npm - @rockcarver/frodo-lib - Versions diffs - 0.16.2-8 → 0.17.0 - Mend

@rockcarver/frodo-lib 0.16.2-8 → 0.17.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (434) hide show

package/CHANGELOG.md +221 -1
package/cjs/api/AgentApi.js +14 -61
package/cjs/api/AgentApi.js.map +1 -1
package/cjs/api/AgentApi.test.js.map +1 -1
package/cjs/api/ApiTypes.js +0 -5
package/cjs/api/ApiTypes.js.map +1 -1
package/cjs/api/AuthenticateApi.js +9 -20
package/cjs/api/AuthenticateApi.js.map +1 -1
package/cjs/api/AuthenticateApi.test.js.map +1 -0
package/cjs/api/BaseApi.js +82 -124
package/cjs/api/BaseApi.js.map +1 -1
package/cjs/api/CirclesOfTrustApi.js +8 -32
package/cjs/api/CirclesOfTrustApi.js.map +1 -1
package/cjs/api/IdmConfigApi.js +9 -34
package/cjs/api/IdmConfigApi.js.map +1 -1
package/cjs/api/LogApi.js +8 -31
package/cjs/api/LogApi.js.map +1 -1
package/cjs/api/ManagedObjectApi.js +34 -31
package/cjs/api/ManagedObjectApi.js.map +1 -1
package/cjs/api/NodeApi.js +10 -41
package/cjs/api/NodeApi.js.map +1 -1
package/cjs/api/NodeApi.test.js.map +1 -1
package/cjs/api/OAuth2ClientApi.js +7 -26
package/cjs/api/OAuth2ClientApi.js.map +1 -1
package/cjs/api/OAuth2OIDCApi.js +28 -34
package/cjs/api/OAuth2OIDCApi.js.map +1 -1
package/cjs/api/OAuth2OIDCApi.test.js.map +1 -0
package/cjs/api/OAuth2ProviderApi.js +5 -15
package/cjs/api/OAuth2ProviderApi.js.map +1 -1
package/cjs/api/RealmApi.js +8 -34
package/cjs/api/RealmApi.js.map +1 -1
package/cjs/api/Saml2Api.js +32 -118
package/cjs/api/Saml2Api.js.map +1 -1
package/cjs/api/ScriptApi.js +8 -30
package/cjs/api/ScriptApi.js.map +1 -1
package/cjs/api/SecretsApi.js +14 -64
package/cjs/api/SecretsApi.js.map +1 -1
package/cjs/api/SecretsApi.test.js.map +1 -1
package/cjs/api/ServerInfoApi.js +6 -21
package/cjs/api/ServerInfoApi.js.map +1 -1
package/cjs/api/ServiceApi.js +49 -47
package/cjs/api/ServiceApi.js.map +1 -1
package/cjs/api/SocialIdentityProvidersApi.js +9 -36
package/cjs/api/SocialIdentityProvidersApi.js.map +1 -1
package/cjs/api/StartupApi.js +5 -24
package/cjs/api/StartupApi.js.map +1 -1
package/cjs/api/StartupApi.test.js.map +1 -1
package/cjs/api/TreeApi.js +8 -30
package/cjs/api/TreeApi.js.map +1 -1
package/cjs/api/TreeApi.test.js.map +1 -1
package/cjs/api/VariablesApi.js +9 -37
package/cjs/api/VariablesApi.js.map +1 -1
package/cjs/api/VariablesApi.test.js.map +1 -1
package/cjs/api/utils/ApiUtils.js +47 -57
package/cjs/api/utils/ApiUtils.js.map +1 -1
package/cjs/api/utils/ApiUtils.test.js.map +1 -1
package/cjs/api/utils/Base64.js +6 -15
package/cjs/api/utils/Base64.js.map +1 -1
package/cjs/ext/axios-curlirize/curlirize.js +2 -9
package/cjs/ext/axios-curlirize/curlirize.js.map +1 -1
package/cjs/ext/axios-curlirize/lib/CurlHelper.js +7 -22
package/cjs/ext/axios-curlirize/lib/CurlHelper.js.map +1 -1
package/cjs/index.js +30 -89
package/cjs/index.js.map +1 -1
package/cjs/ops/AdminOps.js +27 -165
package/cjs/ops/AdminOps.js.map +1 -1
package/cjs/ops/AgentOps.js +3 -160
package/cjs/ops/AgentOps.js.map +1 -1
package/cjs/ops/AgentOps.test.js.map +1 -1
package/cjs/ops/AuthenticateOps.js +265 -226
package/cjs/ops/AuthenticateOps.js.map +1 -1
package/cjs/ops/AuthenticateOps.test.js.map +1 -1
package/cjs/ops/CirclesOfTrustOps.js +13 -91
package/cjs/ops/CirclesOfTrustOps.js.map +1 -1
package/cjs/ops/ConnectionProfileOps.js +220 -136
package/cjs/ops/ConnectionProfileOps.js.map +1 -1
package/cjs/ops/ConnectionProfileOps.test.js.map +1 -1
package/cjs/ops/EmailTemplateOps.js +35 -379
package/cjs/ops/EmailTemplateOps.js.map +1 -1
package/cjs/ops/EmailTemplateOps.test.js.map +1 -1
package/cjs/ops/IdmOps.js +52 -426
package/cjs/ops/IdmOps.js.map +1 -1
package/cjs/ops/IdmOps.test.js.map +1 -1
package/cjs/ops/IdpOps.js +11 -94
package/cjs/ops/IdpOps.js.map +1 -1
package/cjs/ops/IdpOps.test.js.map +1 -1
package/cjs/ops/JoseOps.js +81 -0
package/cjs/ops/JoseOps.js.map +1 -0
package/cjs/ops/JoseOps.test.js.map +1 -0
package/cjs/ops/JourneyOps.js +140 -371
package/cjs/ops/JourneyOps.js.map +1 -1
package/cjs/ops/JourneyOps.test.js.map +1 -1
package/cjs/ops/LogOps.js +14 -47
package/cjs/ops/LogOps.js.map +1 -1
package/cjs/ops/ManagedObjectOps.js +4 -12
package/cjs/ops/ManagedObjectOps.js.map +1 -1
package/cjs/ops/NodeOps.js +9 -67
package/cjs/ops/NodeOps.js.map +1 -1
package/cjs/ops/OAuth2ClientOps.js +10 -40
package/cjs/ops/OAuth2ClientOps.js.map +1 -1
package/cjs/ops/OpsTypes.js +0 -5
package/cjs/ops/OpsTypes.js.map +1 -1
package/cjs/ops/OrganizationOps.js +6 -25
package/cjs/ops/OrganizationOps.js.map +1 -1
package/cjs/ops/RealmOps.js +0 -19
package/cjs/ops/RealmOps.js.map +1 -1
package/cjs/ops/Saml2Ops.js +258 -802
package/cjs/ops/Saml2Ops.js.map +1 -1
package/cjs/ops/Saml2Ops.test.js.map +1 -1
package/cjs/ops/ScriptOps.js +28 -73
package/cjs/ops/ScriptOps.js.map +1 -1
package/cjs/ops/SecretsOps.js +2 -58
package/cjs/ops/SecretsOps.js.map +1 -1
package/cjs/ops/ServiceAccountOps.js +61 -0
package/cjs/ops/ServiceAccountOps.js.map +1 -0
package/cjs/ops/ServiceAccountOps.test.js.map +1 -0
package/cjs/ops/ServiceOps.js +55 -101
package/cjs/ops/ServiceOps.js.map +1 -1
package/cjs/ops/StartupOps.js +2 -23
package/cjs/ops/StartupOps.js.map +1 -1
package/cjs/ops/ThemeOps.js +230 -436
package/cjs/ops/ThemeOps.js.map +1 -1
package/cjs/ops/ThemeOps.test.js.map +1 -0
package/cjs/ops/VariablesOps.js +0 -38
package/cjs/ops/VariablesOps.js.map +1 -1
package/cjs/ops/utils/Console.js +29 -62
package/cjs/ops/utils/Console.js.map +1 -1
package/cjs/ops/utils/DataProtection.js +13 -47
package/cjs/ops/utils/DataProtection.js.map +1 -1
package/cjs/ops/utils/DataProtection.test.js.map +1 -1
package/cjs/ops/utils/ExportImportUtils.js +36 -74
package/cjs/ops/utils/ExportImportUtils.js.map +1 -1
package/cjs/ops/utils/ExportImportUtils.test.js.map +1 -1
package/cjs/ops/utils/OpsUtils.js +27 -43
package/cjs/ops/utils/OpsUtils.js.map +1 -1
package/cjs/ops/utils/OpsUtils.test.js.map +1 -1
package/cjs/ops/utils/ValidationUtils.js +0 -13
package/cjs/ops/utils/ValidationUtils.js.map +1 -1
package/cjs/ops/utils/ValidationUtils.test.js.map +1 -1
package/cjs/ops/utils/Version.js +2 -12
package/cjs/ops/utils/Version.js.map +1 -1
package/cjs/ops/utils/Version.test.js.map +1 -1
package/cjs/ops/utils/Wordwrap.js +1 -2
package/cjs/ops/utils/Wordwrap.js.map +1 -1
package/cjs/ops/utils/Wordwrap.test.js.map +1 -0
package/cjs/shared/State.js +239 -0
package/cjs/shared/State.js.map +1 -0
package/cjs/shared/State.test.js.map +1 -0
package/cjs/storage/StaticStorage.js.map +1 -1
package/cjs/test/mocks/AuthenticateApi/step/default_steps.json +88 -0
package/cjs/test/mocks/ForgeRockApiMockEngine.js +184 -80
package/cjs/test/mocks/ForgeRockApiMockEngine.js.map +1 -1
package/cjs/test/mocks/IdmConfigApi/getConfigEntity/managed.json +4420 -0
package/cjs/test/mocks/OAuth2OIDCApi/accessToken/body.json +6 -0
package/cjs/test/mocks/OAuth2OIDCApi/accessToken/headers.json +19 -0
package/cjs/test/mocks/OAuth2OIDCApi/authorize/headers.json +38 -0
package/cjs/test/mocks/Saml2Api/findSaml2Providers/https:sts.windows.net711ffa9c-5972-4713-ace3-688c9732614a_stub.json +18 -0
package/cjs/test/mocks/Saml2Api/findSaml2Providers/iSPAzure_stub.json +18 -0
package/cjs/test/mocks/Saml2Api/getProvider/aVNQQXp1cmU.json +1 -2
package/cjs/test/mocks/Saml2Api/getProvider/dXJuOmZlZGVyYXRpb246TWljcm9zb2Z0T25saW5l.json +1 -3
package/cjs/test/mocks/Saml2Api/getProviderByLocationAndId/hosted/U1BBenVyZQ.json +147 -0
package/cjs/test/mocks/Saml2Api/getProviderByLocationAndId/hosted/aHR0cHM6Ly9pZGMuc2NoZXViZXIuaW8vYW0vc2FtbDIvSURQQXp1cmU.json +182 -0
package/cjs/test/mocks/Saml2Api/getProviderByLocationAndId/hosted/aHR0cHM6Ly9pZGMuc2NoZXViZXIuaW8vYW0vc2FtbDIvSURQQnJvYWRjb20.json +149 -0
package/cjs/test/mocks/Saml2Api/getProviderByLocationAndId/hosted/aHR0cHM6Ly9pZGMuc2NoZXViZXIuaW8vYW0vc2FtbDIvSURQRmVkbGV0.json +141 -0
package/cjs/test/mocks/Saml2Api/getProviderByLocationAndId/hosted/aVNQQXp1cmU.json +1 -2
package/cjs/test/mocks/Saml2Api/getProviderByLocationAndId/hosted/dm9sa2VyRGV2U1A.json +118 -0
package/cjs/test/mocks/Saml2Api/getProviderByLocationAndId/remote/aHR0cHM6Ly9zYW1sLm15dGVzdHJ1bi5jb20vc3A.json +66 -0
package/cjs/test/mocks/Saml2Api/getProviderByLocationAndId/remote/aHR0cHM6Ly9zdHMud2luZG93cy5uZXQvNzExZmZhOWMtNTk3Mi00NzEzLWFjZTMtNjg4Yzk3MzI2MTRhLw.json +35 -0
package/cjs/test/mocks/Saml2Api/getProviderByLocationAndId/remote/aWRw.json +83 -0
package/cjs/test/mocks/Saml2Api/getProviderByLocationAndId/remote/dXJuOmZlZGVyYXRpb246TWljcm9zb2Z0T25saW5l.json +1 -3
package/cjs/test/mocks/Saml2Api/getProviderMetadata/alpha/SPAzure.xml +74 -0
package/cjs/test/mocks/Saml2Api/getProviderMetadata/alpha/https%3A%2F%2Fidc.scheuber.io%2Fam%2Fsaml2%2FIDPAzure.xml +78 -0
package/cjs/test/mocks/Saml2Api/getProviderMetadata/alpha/https%3A%2F%2Fidc.scheuber.io%2Fam%2Fsaml2%2FIDPBroadcom.xml +78 -0
package/cjs/test/mocks/Saml2Api/getProviderMetadata/alpha/https%3A%2F%2Fidc.scheuber.io%2Fam%2Fsaml2%2FIDPFedlet.xml +78 -0
package/cjs/test/mocks/Saml2Api/getProviderMetadata/alpha/https%3A%2F%2Fsaml.mytestrun.com%2Fsp.xml +13 -0
package/cjs/test/mocks/Saml2Api/getProviderMetadata/alpha/{dXJuOmZlZGVyYXRpb246TWljcm9zb2Z0T25saW5l.xml → https%3A%2F%2Fsts.windows.net%2F711ffa9c-5972-4713-ace3-688c9732614a%2F.xml} +0 -0
package/cjs/test/mocks/Saml2Api/getProviderMetadata/alpha/{aVNQQXp1cmU.xml → iSPAzure.xml} +0 -0
package/cjs/test/mocks/Saml2Api/getProviderMetadata/alpha/urn%3Afederation%3AMicrosoftOnline.xml +84 -0
package/cjs/test/mocks/Saml2Ops/importSaml2Provider/SPAzure.saml.json +243 -0
package/cjs/test/mocks/Saml2Ops/importSaml2Provider/iSPAzure.saml.json +242 -0
package/cjs/test/mocks/Saml2Ops/importSaml2Provider/idc.scheuber.ioamsaml2IDPAzure.saml.json +454 -0
package/cjs/test/mocks/Saml2Ops/importSaml2Provider/idc.scheuber.ioamsaml2IDPBroadcom.saml.json +586 -0
package/cjs/test/mocks/Saml2Ops/importSaml2Provider/idc.scheuber.ioamsaml2IDPFedlet.saml.json +241 -0
package/cjs/test/mocks/Saml2Ops/importSaml2Provider/idp.saml.json +185 -0
package/cjs/test/mocks/Saml2Ops/importSaml2Provider/saml.mytestrun.comsp.saml.json +101 -0
package/cjs/test/mocks/Saml2Ops/importSaml2Provider/sts.windows.net711ffa9c-5972-4713-ace3-688c9732614a.saml.json +113 -0
package/cjs/test/mocks/Saml2Ops/importSaml2Provider/urn:federation:MicrosoftOnline.saml.json +199 -0
package/cjs/test/mocks/Saml2Ops/importSaml2Provider/volkerDevSP.saml.json +212 -0
package/cjs/test/mocks/Saml2Ops/importSaml2Providers/allAlphaProviders.saml.json +2414 -0
package/cjs/test/mocks/ScriptApi/getScript/5b29c5b7-b161-4a42-a41f-d6c85316b951.json +13 -0
package/cjs/test/mocks/ScriptApi/getScript/85523e71-2d77-4577-b078-6f9674cc54e2.json +13 -0
package/cjs/test/mocks/ScriptApi/getScript/90c4eca5-05f0-42f5-b9bf-88b693eabbbd.json +13 -0
package/cjs/test/mocks/ServerInfoApi/getServerInfo/info.json +25 -0
package/cjs/test/mocks/ServerInfoApi/getServerVersionInfo/version.json +8 -0
package/cjs/utils/AutoSetupPolly.js +79 -0
package/cjs/utils/AutoSetupPolly.js.map +1 -0
package/cjs/utils/SetupJest.js +6 -0
package/cjs/utils/SetupJest.js.map +1 -0
package/cjs/{test/mocks → utils}/snapshotResolve.js +10 -12
package/cjs/utils/snapshotResolve.js.map +1 -0
package/esm/api/AgentApi.mjs +19 -21
package/esm/api/AgentApi.test.mjs +6 -15
package/esm/api/ApiTypes.mjs +0 -5
package/esm/api/AuthenticateApi.mjs +7 -10
package/esm/api/AuthenticateApi.test.mjs +39 -0
package/esm/api/BaseApi.mjs +96 -81
package/esm/api/CirclesOfTrustApi.mjs +9 -12
package/esm/api/IdmConfigApi.mjs +11 -12
package/esm/api/LogApi.mjs +6 -10
package/esm/api/ManagedObjectApi.mjs +23 -8
package/esm/api/NodeApi.mjs +13 -15
package/esm/api/NodeApi.test.mjs +13 -17
package/esm/api/OAuth2ClientApi.mjs +7 -9
package/esm/api/OAuth2OIDCApi.mjs +15 -9
package/esm/api/OAuth2OIDCApi.test.mjs +53 -0
package/esm/api/OAuth2ProviderApi.mjs +3 -5
package/esm/api/RealmApi.mjs +10 -13
package/esm/api/Saml2Api.mjs +31 -61
package/esm/api/ScriptApi.mjs +9 -11
package/esm/api/SecretsApi.mjs +21 -24
package/esm/api/SecretsApi.test.mjs +9 -31
package/esm/api/ServerInfoApi.mjs +5 -9
package/esm/api/ServiceApi.mjs +53 -26
package/esm/api/SocialIdentityProvidersApi.mjs +11 -13
package/esm/api/StartupApi.mjs +5 -10
package/esm/api/StartupApi.test.mjs +4 -7
package/esm/api/TreeApi.mjs +9 -11
package/esm/api/TreeApi.test.mjs +24 -61
package/esm/api/VariablesApi.mjs +11 -13
package/esm/api/VariablesApi.test.mjs +80 -222
package/esm/api/utils/ApiUtils.mjs +45 -48
package/esm/api/utils/ApiUtils.test.mjs +33 -32
package/esm/api/utils/Base64.mjs +6 -9
package/esm/ext/axios-curlirize/curlirize.mjs +2 -7
package/esm/ext/axios-curlirize/lib/CurlHelper.mjs +7 -20
package/esm/index.mjs +23 -13
package/esm/ops/AdminOps.mjs +33 -119
package/esm/ops/AgentOps.mjs +38 -81
package/esm/ops/AgentOps.test.mjs +5 -45
package/esm/ops/AuthenticateOps.mjs +241 -175
package/esm/ops/AuthenticateOps.test.mjs +7 -9
package/esm/ops/CirclesOfTrustOps.mjs +24 -61
package/esm/ops/ConnectionProfileOps.mjs +192 -82
package/esm/ops/ConnectionProfileOps.test.mjs +19 -19
package/esm/ops/EmailTemplateOps.mjs +18 -276
package/esm/ops/EmailTemplateOps.test.mjs +19 -44
package/esm/ops/IdmOps.mjs +30 -327
package/esm/ops/IdmOps.test.mjs +47 -54
package/esm/ops/IdpOps.mjs +21 -59
package/esm/ops/IdpOps.test.mjs +5 -5
package/esm/ops/JoseOps.mjs +41 -0
package/esm/ops/JoseOps.test.mjs +137 -0
package/esm/ops/JourneyOps.mjs +147 -290
package/esm/ops/JourneyOps.test.mjs +30 -28
package/esm/ops/LogOps.mjs +15 -25
package/esm/ops/ManagedObjectOps.mjs +6 -6
package/esm/ops/NodeOps.mjs +9 -47
package/esm/ops/OAuth2ClientOps.mjs +13 -19
package/esm/ops/OpsTypes.mjs +1 -3
package/esm/ops/OrganizationOps.mjs +7 -14
package/esm/ops/RealmOps.mjs +4 -7
package/esm/ops/Saml2Ops.mjs +199 -587
package/esm/ops/Saml2Ops.test.mjs +303 -84
package/esm/ops/ScriptOps.mjs +31 -47
package/esm/ops/SecretsOps.mjs +15 -31
package/esm/ops/ServiceAccountOps.mjs +41 -0
package/esm/ops/ServiceAccountOps.test.mjs +51 -0
package/esm/ops/ServiceOps.mjs +66 -83
package/esm/ops/StartupOps.mjs +4 -13
package/esm/ops/ThemeOps.mjs +189 -298
package/esm/{api/ThemeApi.test.mjs → ops/ThemeOps.test.mjs} +91 -96
package/esm/ops/VariablesOps.mjs +9 -18
package/esm/ops/utils/Console.mjs +28 -46
package/esm/ops/utils/DataProtection.mjs +15 -28
package/esm/ops/utils/DataProtection.test.mjs +8 -8
package/esm/ops/utils/ExportImportUtils.mjs +34 -43
package/esm/ops/utils/ExportImportUtils.test.mjs +20 -18
package/esm/ops/utils/OpsUtils.mjs +27 -21
package/esm/ops/utils/OpsUtils.test.mjs +155 -27
package/esm/ops/utils/ValidationUtils.mjs +0 -9
package/esm/ops/utils/Version.mjs +2 -3
package/esm/ops/utils/Version.test.mjs +0 -2
package/esm/ops/utils/Wordwrap.mjs +1 -1
package/esm/ops/utils/Wordwrap.test.mjs +19 -0
package/esm/shared/State.mjs +164 -0
package/esm/shared/State.test.mjs +249 -0
package/esm/test/mocks/AuthenticateApi/step/default_steps.json +88 -0
package/esm/test/mocks/ForgeRockApiMockEngine.mjs +169 -33
package/esm/test/mocks/IdmConfigApi/getConfigEntity/managed.json +4420 -0
package/esm/test/mocks/OAuth2OIDCApi/accessToken/body.json +6 -0
package/esm/test/mocks/OAuth2OIDCApi/accessToken/headers.json +19 -0
package/esm/test/mocks/OAuth2OIDCApi/authorize/headers.json +38 -0
package/esm/test/mocks/Saml2Api/findSaml2Providers/https:sts.windows.net711ffa9c-5972-4713-ace3-688c9732614a_stub.json +18 -0
package/esm/test/mocks/Saml2Api/findSaml2Providers/iSPAzure_stub.json +18 -0
package/esm/test/mocks/Saml2Api/getProvider/aVNQQXp1cmU.json +1 -2
package/esm/test/mocks/Saml2Api/getProvider/dXJuOmZlZGVyYXRpb246TWljcm9zb2Z0T25saW5l.json +1 -3
package/esm/test/mocks/Saml2Api/getProviderByLocationAndId/hosted/U1BBenVyZQ.json +147 -0
package/esm/test/mocks/Saml2Api/getProviderByLocationAndId/hosted/aHR0cHM6Ly9pZGMuc2NoZXViZXIuaW8vYW0vc2FtbDIvSURQQXp1cmU.json +182 -0
package/esm/test/mocks/Saml2Api/getProviderByLocationAndId/hosted/aHR0cHM6Ly9pZGMuc2NoZXViZXIuaW8vYW0vc2FtbDIvSURQQnJvYWRjb20.json +149 -0
package/esm/test/mocks/Saml2Api/getProviderByLocationAndId/hosted/aHR0cHM6Ly9pZGMuc2NoZXViZXIuaW8vYW0vc2FtbDIvSURQRmVkbGV0.json +141 -0
package/esm/test/mocks/Saml2Api/getProviderByLocationAndId/hosted/aVNQQXp1cmU.json +1 -2
package/esm/test/mocks/Saml2Api/getProviderByLocationAndId/hosted/dm9sa2VyRGV2U1A.json +118 -0
package/esm/test/mocks/Saml2Api/getProviderByLocationAndId/remote/aHR0cHM6Ly9zYW1sLm15dGVzdHJ1bi5jb20vc3A.json +66 -0
package/esm/test/mocks/Saml2Api/getProviderByLocationAndId/remote/aHR0cHM6Ly9zdHMud2luZG93cy5uZXQvNzExZmZhOWMtNTk3Mi00NzEzLWFjZTMtNjg4Yzk3MzI2MTRhLw.json +35 -0
package/esm/test/mocks/Saml2Api/getProviderByLocationAndId/remote/aWRw.json +83 -0
package/esm/test/mocks/Saml2Api/getProviderByLocationAndId/remote/dXJuOmZlZGVyYXRpb246TWljcm9zb2Z0T25saW5l.json +1 -3
package/esm/test/mocks/Saml2Api/getProviderMetadata/alpha/SPAzure.xml +74 -0
package/esm/test/mocks/Saml2Api/getProviderMetadata/alpha/https%3A%2F%2Fidc.scheuber.io%2Fam%2Fsaml2%2FIDPAzure.xml +78 -0
package/esm/test/mocks/Saml2Api/getProviderMetadata/alpha/https%3A%2F%2Fidc.scheuber.io%2Fam%2Fsaml2%2FIDPBroadcom.xml +78 -0
package/esm/test/mocks/Saml2Api/getProviderMetadata/alpha/https%3A%2F%2Fidc.scheuber.io%2Fam%2Fsaml2%2FIDPFedlet.xml +78 -0
package/esm/test/mocks/Saml2Api/getProviderMetadata/alpha/https%3A%2F%2Fsaml.mytestrun.com%2Fsp.xml +13 -0
package/esm/test/mocks/Saml2Api/getProviderMetadata/alpha/{dXJuOmZlZGVyYXRpb246TWljcm9zb2Z0T25saW5l.xml → https%3A%2F%2Fsts.windows.net%2F711ffa9c-5972-4713-ace3-688c9732614a%2F.xml} +0 -0
package/esm/test/mocks/Saml2Api/getProviderMetadata/alpha/{aVNQQXp1cmU.xml → iSPAzure.xml} +0 -0
package/esm/test/mocks/Saml2Api/getProviderMetadata/alpha/urn%3Afederation%3AMicrosoftOnline.xml +84 -0
package/esm/test/mocks/Saml2Ops/importSaml2Provider/SPAzure.saml.json +243 -0
package/esm/test/mocks/Saml2Ops/importSaml2Provider/iSPAzure.saml.json +242 -0
package/esm/test/mocks/Saml2Ops/importSaml2Provider/idc.scheuber.ioamsaml2IDPAzure.saml.json +454 -0
package/esm/test/mocks/Saml2Ops/importSaml2Provider/idc.scheuber.ioamsaml2IDPBroadcom.saml.json +586 -0
package/esm/test/mocks/Saml2Ops/importSaml2Provider/idc.scheuber.ioamsaml2IDPFedlet.saml.json +241 -0
package/esm/test/mocks/Saml2Ops/importSaml2Provider/idp.saml.json +185 -0
package/esm/test/mocks/Saml2Ops/importSaml2Provider/saml.mytestrun.comsp.saml.json +101 -0
package/esm/test/mocks/Saml2Ops/importSaml2Provider/sts.windows.net711ffa9c-5972-4713-ace3-688c9732614a.saml.json +113 -0
package/esm/test/mocks/Saml2Ops/importSaml2Provider/urn:federation:MicrosoftOnline.saml.json +199 -0
package/esm/test/mocks/Saml2Ops/importSaml2Provider/volkerDevSP.saml.json +212 -0
package/esm/test/mocks/Saml2Ops/importSaml2Providers/allAlphaProviders.saml.json +2414 -0
package/esm/test/mocks/ScriptApi/getScript/5b29c5b7-b161-4a42-a41f-d6c85316b951.json +13 -0
package/esm/test/mocks/ScriptApi/getScript/85523e71-2d77-4577-b078-6f9674cc54e2.json +13 -0
package/esm/test/mocks/ScriptApi/getScript/90c4eca5-05f0-42f5-b9bf-88b693eabbbd.json +13 -0
package/esm/test/mocks/ServerInfoApi/getServerInfo/info.json +25 -0
package/esm/test/mocks/ServerInfoApi/getServerVersionInfo/version.json +8 -0
package/esm/utils/AutoSetupPolly.mjs +72 -0
package/esm/utils/SetupJest.mjs +3 -0
package/esm/{test/mocks → utils}/snapshotResolve.mjs +10 -12
package/package.json +38 -27
package/types/api/AgentApi.d.ts.map +1 -1
package/types/api/ApiTypes.d.ts +19 -15
package/types/api/ApiTypes.d.ts.map +1 -1
package/types/api/AuthenticateApi.d.ts +1 -1
package/types/api/AuthenticateApi.d.ts.map +1 -1
package/types/api/BaseApi.d.ts +2 -0
package/types/api/BaseApi.d.ts.map +1 -1
package/types/api/CirclesOfTrustApi.d.ts.map +1 -1
package/types/api/IdmConfigApi.d.ts.map +1 -1
package/types/api/LogApi.d.ts.map +1 -1
package/types/api/ManagedObjectApi.d.ts +9 -1
package/types/api/ManagedObjectApi.d.ts.map +1 -1
package/types/api/NodeApi.d.ts.map +1 -1
package/types/api/OAuth2ClientApi.d.ts.map +1 -1
package/types/api/OAuth2OIDCApi.d.ts +4 -2
package/types/api/OAuth2OIDCApi.d.ts.map +1 -1
package/types/api/OAuth2ProviderApi.d.ts.map +1 -1
package/types/api/RealmApi.d.ts.map +1 -1
package/types/api/Saml2Api.d.ts +7 -13
package/types/api/Saml2Api.d.ts.map +1 -1
package/types/api/ScriptApi.d.ts.map +1 -1
package/types/api/SecretsApi.d.ts.map +1 -1
package/types/api/ServerInfoApi.d.ts.map +1 -1
package/types/api/ServiceApi.d.ts +14 -7
package/types/api/ServiceApi.d.ts.map +1 -1
package/types/api/SocialIdentityProvidersApi.d.ts.map +1 -1
package/types/api/StartupApi.d.ts.map +1 -1
package/types/api/TreeApi.d.ts.map +1 -1
package/types/api/VariablesApi.d.ts.map +1 -1
package/types/api/utils/ApiUtils.d.ts +1 -0
package/types/api/utils/ApiUtils.d.ts.map +1 -1
package/types/api/utils/Base64.d.ts +1 -0
package/types/api/utils/Base64.d.ts.map +1 -1
package/types/index.d.ts +11 -5
package/types/index.d.ts.map +1 -1
package/types/ops/AgentOps.d.ts +1 -1
package/types/ops/AgentOps.d.ts.map +1 -1
package/types/ops/AuthenticateOps.d.ts +10 -2
package/types/ops/AuthenticateOps.d.ts.map +1 -1
package/types/ops/ConnectionProfileOps.d.ts +49 -21
package/types/ops/ConnectionProfileOps.d.ts.map +1 -1
package/types/ops/EmailTemplateOps.d.ts +14 -33
package/types/ops/EmailTemplateOps.d.ts.map +1 -1
package/types/ops/IdmOps.d.ts +29 -37
package/types/ops/IdmOps.d.ts.map +1 -1
package/types/ops/JoseOps.d.ts +33 -0
package/types/ops/JoseOps.d.ts.map +1 -0
package/types/ops/JourneyOps.d.ts.map +1 -1
package/types/ops/LogOps.d.ts.map +1 -1
package/types/ops/NodeOps.d.ts.map +1 -1
package/types/ops/OAuth2ClientOps.d.ts.map +1 -1
package/types/ops/OpsTypes.d.ts +17 -1
package/types/ops/OpsTypes.d.ts.map +1 -1
package/types/ops/OrganizationOps.d.ts.map +1 -1
package/types/ops/Saml2Ops.d.ts +52 -55
package/types/ops/Saml2Ops.d.ts.map +1 -1
package/types/ops/ScriptOps.d.ts.map +1 -1
package/types/ops/ServiceAccountOps.d.ts +20 -0
package/types/ops/ServiceAccountOps.d.ts.map +1 -0
package/types/ops/ServiceOps.d.ts +18 -10
package/types/ops/ServiceOps.d.ts.map +1 -1
package/types/ops/ThemeOps.d.ts +35 -50
package/types/ops/ThemeOps.d.ts.map +1 -1
package/types/ops/utils/Console.d.ts +1 -1
package/types/ops/utils/Console.d.ts.map +1 -1
package/types/ops/utils/DataProtection.d.ts.map +1 -1
package/types/ops/utils/ExportImportUtils.d.ts +5 -2
package/types/ops/utils/ExportImportUtils.d.ts.map +1 -1
package/types/ops/utils/OpsUtils.d.ts +6 -0
package/types/ops/utils/OpsUtils.d.ts.map +1 -1
package/types/ops/utils/Wordwrap.d.ts.map +1 -1
package/types/shared/State.d.ts +223 -0
package/types/shared/State.d.ts.map +1 -0
package/types/test/mocks/ForgeRockApiMockEngine.d.ts +21 -1
package/types/test/mocks/ForgeRockApiMockEngine.d.ts.map +1 -1
package/types/utils/AutoSetupPolly.d.ts +1 -0
package/types/utils/AutoSetupPolly.d.ts.map +1 -0
package/types/utils/SetupJest.d.ts +1 -0
package/types/utils/SetupJest.d.ts.map +1 -0
package/types/utils/snapshotResolve.d.ts +1 -0
package/types/utils/snapshotResolve.d.ts.map +1 -0
package/cjs/api/EmailTemplateApi.js +0 -73
package/cjs/api/EmailTemplateApi.js.map +0 -1
package/cjs/api/ThemeApi.js +0 -367
package/cjs/api/ThemeApi.js.map +0 -1
package/cjs/api/ThemeApi.test.js.map +0 -1
package/cjs/storage/SessionStorage.js +0 -91
package/cjs/storage/SessionStorage.js.map +0 -1
package/cjs/test/mocks/snapshotResolve.js.map +0 -1
package/esm/api/EmailTemplateApi.mjs +0 -34
package/esm/api/ThemeApi.mjs +0 -271
package/esm/storage/SessionStorage.mjs +0 -79
package/types/api/EmailTemplateApi.d.ts +0 -22
package/types/api/EmailTemplateApi.d.ts.map +0 -1
package/types/api/ThemeApi.d.ts +0 -56
package/types/api/ThemeApi.d.ts.map +0 -1
package/types/storage/SessionStorage.d.ts +0 -71
package/types/storage/SessionStorage.d.ts.map +0 -1
package/types/test/mocks/snapshotResolve.d.ts +0 -1
package/types/test/mocks/snapshotResolve.d.ts.map +0 -1

package/esm/test/mocks/Saml2Ops/importSaml2Providers/allAlphaProviders.saml.json ADDED Viewed

@@ -0,0 +1,2414 @@
+{
+  "meta": {
+    "origin": "https://openam-volker-dev.forgeblocks.com/am",
+    "originAmVersion": "7.3.0",
+    "exportedBy": "volker.scheuber@forgerock.com",
+    "exportDate": "2022-11-20T21:40:42.858Z",
+    "exportTool": "frodo",
+    "exportToolVersion": "v0.16.2-8 [v18.7.0]"
+  },
+  "script": {
+    "85523e71-2d77-4577-b078-6f9674cc54e2": {
+      "_id": "85523e71-2d77-4577-b078-6f9674cc54e2",
+      "name": "Saml2 IDP Adapter Always Auth",
+      "description": "Always redirect browser pre-auth",
+      "script": [
+        "/*",
+        " * Copyright 2021-2022 ForgeRock AS. All Rights Reserved",
+        " *",
+        " * Use of this code requires a commercial software license with ForgeRock AS.",
+        " * or with one of its affiliates. All use shall be exclusively subject",
+        " * to such license between the licensee and ForgeRock AS.",
+        " */",
+        "",
+        "/*",
+        " * The script has these top level functions that could be executed during a SAML2 flow.",
+        " *      - preSingleSignOn",
+        " *      - preAuthentication",
+        " *      - preSendResponse",
+        " *      - preSignResponse",
+        " *      - preSendFailureResponse",
+        " *",
+        " * Please see the javadoc for the interface definition and more information about these methods.",
+        " * https://backstage.forgerock.com/docs/am/7.2/apidocs/com/sun/identity/saml2/plugins/SAML2IdentityProviderAdapter.html",
+        " * Note that the initialize method is not supported in the scripts.",
+        " *",
+        " * Defined variables. Check the documentation on the respective functions for the variables available to it.",
+        " *",
+        " * hostedEntityId - String",
+        " *     Entity ID for the hosted IDP",
+        " * realm - String",
+        " *     Realm of the hosted IDP",
+        " * idpAdapterScriptHelper - IdpAdapterScriptHelper (1)",
+        " *     An instance of IdpAdapterScriptHelper containing helper methods. See Javadoc for more details.",
+        " * request - HttpServletRequest (2)",
+        " *     Servlet request object",
+        " * response - HttpServletResponse (3)",
+        " *     Servlet response object",
+        " * authnRequest - AuthnRequest (4)",
+        " *     The original authentication request sent from SP",
+        " * reqId - String",
+        " *     The id to use for continuation of processing if the adapter redirects",
+        " * res - Response (5)",
+        " *     The SAML Response",
+        " * session - SSOToken (6)",
+        " *     The single sign-on session. The reference type of this is Object and would need to be casted to SSOToken.",
+        " * relayState - String",
+        " *     The relayState that will be used in the redirect",
+        " * faultCode - String",
+        " *     the fault code that will be returned in the SAML response",
+        " * faultDetail - String",
+        " *     the fault detail that will be returned in the SAML response",
+        " * logger - Logger instance",
+        " *     https://backstage.forgerock.com/docs/am/7/scripting-guide/scripting-api-global-logger.html#scripting-api-global-logger.",
+        " *     Corresponding log files will be prefixed with: scripts.<script name>",
+        " *",
+        " * Throws SAML2Exception (7):",
+        " *     for any exceptions occurring in the adapter. The federation process will continue",
+        " *",
+        " * Class reference:",
+        " * (1) idpAdapterScriptHelper - https://backstage.forgerock.com/docs/am/7.2/apidocs/com/sun/identity/saml2/plugins/scripted/IdpAdapterScriptHelper.html.",
+        " * (2) HttpServletRequest - https://tomcat.apache.org/tomcat-7.0-doc/servletapi/javax/servlet/http/HttpServletRequest.html.",
+        " * (3) HttpServletResponse - https://tomcat.apache.org/tomcat-7.0-doc/servletapi/javax/servlet/http/HttpServletResponse.html.",
+        " * (4) AuthnRequest - https://backstage.forgerock.com/docs/am/7.2/apidocs/com/sun/identity/saml2/protocol/AuthnRequest.html.",
+        " * (5) Response - https://backstage.forgerock.com/docs/am/7.2/apidocs/com/sun/identity/saml2/protocol/Response.html.",
+        " * (6) SSOToken - https://backstage.forgerock.com/docs/am/7.2/apidocs/com/iplanet/sso/SSOToken.html.",
+        " * (7) SAML2Exception - https://backstage.forgerock.com/docs/am/7.2/apidocs/com/sun/identity/saml2/common/SAML2Exception.html.",
+        " */",
+        "",
+        "/*",
+        " * Template/default script for SAML2 IDP Adapter scripted plugin.",
+        " */",
+        "",
+        "/*",
+        " * Available variables for preSingleSignOn:",
+        " *     hostedEntityId",
+        " *     realm",
+        " *     idpAdapterScriptHelper",
+        " *     request",
+        " *     authnRequest",
+        " *     response",
+        " *     reqId",
+        " *     logger",
+        " *",
+        " * Return - true if browser redirection is happening after processing, false otherwise. Default to false.",
+        " */",
+        "function preSingleSignOn () {",
+        "      logger.error(\"Chicago: preSingleSignOn\");",
+        "    return true;",
+        "}",
+        "",
+        "/*",
+        " * Available variables for preAuthentication:",
+        " *     hostedEntityId",
+        " *     realm",
+        " *     idpAdapterScriptHelper",
+        " *     request",
+        " *     authnRequest",
+        " *     response",
+        " *     reqId",
+        " *     session",
+        " *     relayState",
+        " *     logger",
+        " *",
+        " * Return - true if browser redirection is happening after processing, false otherwise. Default to false.",
+        " */",
+        "function preAuthentication () {",
+        "      logger.error(\"Chicago: preAuthentication\");",
+        "    return true;",
+        "}",
+        "",
+        "/*",
+        " * Available variables for preSendResponse:",
+        " *     hostedEntityId",
+        " *     realm",
+        " *     idpAdapterScriptHelper",
+        " *     request",
+        " *     authnRequest",
+        " *     response",
+        " *     reqId",
+        " *     session",
+        " *     relayState",
+        " *     logger",
+        " *",
+        " * Return - true if browser redirection happened after processing, false otherwise. Default to false.",
+        " */",
+        "function preSendResponse () {",
+        "      logger.error(\"Chicago: preSendResponse\");",
+        "      logger.error(\"Chicago: authnRequest: \"+authnRequest);",
+        "      response.sendRedirect(\"https://idc.scheuber.io/am/XUI/?realm=alpha&authIndexType=service&authIndexValue=Dispatcher&ForceAuth=true&goto=\"+relayState);",
+        "    return true;",
+        "}",
+        "",
+        "/*",
+        " * Available variables for preSignResponse:",
+        " *     hostedEntityId",
+        " *     realm",
+        " *     idpAdapterScriptHelper",
+        " *     request",
+        " *     authnRequest",
+        " *     session",
+        " *     relayState",
+        " *     res",
+        " *     logger",
+        " */",
+        "function preSignResponse () {",
+        "      logger.error(\"Chicago: preSignResponse\");",
+        "}",
+        "",
+        "/*",
+        " * Available variables for preSendFailureResponse:",
+        " *     hostedEntityId",
+        " *     realm",
+        " *     idpAdapterScriptHelper",
+        " *     request",
+        " *     response",
+        " *     faultCode",
+        " *     faultDetail",
+        " *     logger",
+        " */",
+        "function preSendFailureResponse () {",
+        "      logger.error(\"Chicago: preSendFailureResponse\");",
+        "}"
+      ],
+      "default": false,
+      "language": "JAVASCRIPT",
+      "context": "SAML2_IDP_ADAPTER",
+      "createdBy": "null",
+      "creationDate": 0,
+      "lastModifiedBy": "null",
+      "lastModifiedDate": 0
+    },
+    "90c4eca5-05f0-42f5-b9bf-88b693eabbbd": {
+      "_id": "90c4eca5-05f0-42f5-b9bf-88b693eabbbd",
+      "name": "Saml2 IDP Attribute Mapper Script",
+      "description": null,
+      "script": [
+        "/*",
+        " * Copyright 2021 ForgeRock AS. All Rights Reserved",
+        " * Use of this code requires a commercial software license with ForgeRock AS.",
+        " * or with one of its affiliates. All use shall be exclusively subject",
+        " * to such license between the licensee and ForgeRock AS.",
+        " */",
+        "",
+        "/*",
+        " * This script returns a list of SAML Attribute objects for the IDP framework to insert into the generated Assertion.",
+        " *",
+        " * Defined variables:",
+        " * session - SSOToken (1)",
+        " *           The single sign-on session.",
+        " * hostedEntityId - String (primitive).",
+        " *                  The hosted entity ID.",
+        " * remoteEntityId - String (primitive).",
+        " *                  The remote entity ID.",
+        " * realm - String (primitive).",
+        " *         The name of the realm the user is authenticating to.",
+        " * logger - Always present, the debug logger instance:",
+        " *          https://backstage.forgerock.com/docs/am/7/scripting-guide/scripting-api-global-logger.html#scripting-api-global-logger.",
+        " *          Corresponding log files will be prefixed with: scripts.SAML2_IDP_ATTRIBUTE_MAPPER",
+        " * idpAttributeMapperScriptHelper - IdpAttributeMapperScriptHelper (2)",
+        " *                                - An IdpAttributeMapperScriptHelper instance containing methods used for IDP attribute mapping.",
+        " *",
+        " * Throws SAML2Exception:",
+        " *      - on failing to map the IDP attributes.",
+        " *",
+        " * Return - a list of SAML Attribute (3) objects.",
+        " *",
+        " * Class reference:",
+        " * (1) SSOToken - https://backstage.forgerock.com/docs/am/7/apidocs/com/iplanet/sso/SSOToken.html.",
+        " * (2) IdpAttributeMapperScriptHelper - https://backstage.forgerock.com/docs/am/7/apidocs/com/sun/identity/saml2/plugins/scripted/IdpAttributeMapperScriptHelper.html.",
+        " * (3) Attribute - https://backstage.forgerock.com/docs/am/7/apidocs/com/sun/identity/saml2/assertion/Attribute.html.",
+        " */",
+        "",
+        "/**",
+        " * Default SAML2 IDP Attribute Mapper.",
+        " */",
+        "function getAttributes() {",
+        "    var frJava = JavaImporter(",
+        "        com.sun.identity.saml2.common.SAML2Exception",
+        "    );",
+        "",
+        "    const debugMethod = \"ScriptedIDPAttributeMapper.getAttributes:: \";",
+        "",
+        "    try {",
+        "",
+        "        if (!idpAttributeMapperScriptHelper.isSessionValid(session)) {",
+        "            logger.error(debugMethod + \"Invalid session.\");",
+        "            return null;",
+        "        }",
+        "",
+        "        var configMap = idpAttributeMapperScriptHelper.getRemoteSPConfigAttributeMap(realm, remoteEntityId);",
+        "        logger.message(debugMethod + \"Remote SP attribute map = {}\", configMap);",
+        "        if (configMap == null || configMap.isEmpty()) {",
+        "            configMap = idpAttributeMapperScriptHelper.getHostedIDPConfigAttributeMap(realm, hostedEntityId);",
+        "            if (configMap == null || configMap.isEmpty()) {",
+        "                logger.message(debugMethod + \"Configuration map is not defined.\");",
+        "                return null;",
+        "            }",
+        "            logger.message(debugMethod + \"Hosted IDP attribute map = {}\", configMap);",
+        "        }",
+        "",
+        "        var attributes = new java.util.ArrayList();",
+        "        var stringValueMap = new java.util.HashSet();",
+        "        var binaryValueMap;",
+        "        var localAttribute;",
+        "",
+        "        // Don't try to read the attributes from the datastore if the ignored profile is enabled in this realm.",
+        "        if (!idpAttributeMapperScriptHelper.isIgnoredProfile(session, realm)) {",
+        "            try {",
+        "                // Resolve attributes to be read from the datastore.",
+        "                var stringAttributes = new java.util.HashSet();",
+        "                var binaryAttributes = new java.util.HashSet();",
+        "                var keyIter = configMap.keySet().iterator();",
+        "                while (keyIter.hasNext()) {",
+        "                    var key = keyIter.next();",
+        "                    localAttribute = configMap.get(key);",
+        "                    if (!idpAttributeMapperScriptHelper.isStaticAttribute(localAttribute)) {",
+        "                        if (idpAttributeMapperScriptHelper.isBinaryAttribute(localAttribute)) {",
+        "                            // add it to the list of attributes to treat as being binary",
+        "                            binaryAttributes.add(idpAttributeMapperScriptHelper.removeBinaryAttributeFlag(localAttribute));",
+        "                        } else {",
+        "                            stringAttributes.add(localAttribute);",
+        "                        }",
+        "                    }",
+        "                }",
+        "",
+        "                if (!stringAttributes.isEmpty()) {",
+        "                    stringValueMap = idpAttributeMapperScriptHelper.getAttributes(session, stringAttributes);",
+        "                }",
+        "                if (!binaryAttributes.isEmpty()) {",
+        "                    binaryValueMap = idpAttributeMapperScriptHelper.getBinaryAttributes(session, binaryAttributes);",
+        "                }",
+        "            } catch (error) {",
+        "                logger.error(debugMethod + \"Error accessing the datastore. \" + error);",
+        "                //continue to check in ssotoken.",
+        "            }",
+        "        }",
+        "",
+        "        var keyIter = configMap.keySet().iterator();",
+        "        while (keyIter.hasNext()) {",
+        "            var key = keyIter.next()",
+        "            var nameFormat = null;",
+        "            var samlAttribute = key;",
+        "            localAttribute = configMap.get(key);",
+        "            // check if samlAttribute has format nameFormat|samlAttribute",
+        "            var samlAttributes = String(new java.lang.String(samlAttribute));",
+        "            var tokens = samlAttributes.split('|');",
+        "",
+        "            if (tokens.length > 1) {",
+        "                nameFormat = tokens[0];",
+        "                samlAttribute = tokens[1];",
+        "            }",
+        "",
+        "            var attributeValues = new java.util.HashSet();",
+        "            if (idpAttributeMapperScriptHelper.isStaticAttribute(localAttribute)) {",
+        "                // Remove the static flag before using it as the static value",
+        "                localAttribute = idpAttributeMapperScriptHelper.removeStaticAttributeFlag(localAttribute);",
+        "                attributeValues = new java.util.HashSet([localAttribute]);",
+        "                logger.message(debugMethod + \"Adding static value {} for attribute named {}\", localAttribute, samlAttribute);",
+        "            } else {",
+        "                if (idpAttributeMapperScriptHelper.isBinaryAttribute(localAttribute)) {",
+        "                    // Remove the flag as not used for lookup",
+        "                    localAttribute = idpAttributeMapperScriptHelper.removeBinaryAttributeFlag(localAttribute);",
+        "                    attributeValues = idpAttributeMapperScriptHelper.getBinaryAttributeValues(samlAttribute, localAttribute,",
+        "                        binaryValueMap);",
+        "                } else {",
+        "                    if (stringValueMap != null && !stringValueMap.isEmpty()) {",
+        "                        attributeValues = stringValueMap.get(localAttribute);",
+        "                    } else {",
+        "                        logger.message(debugMethod + \"{} string value map was empty or null.\", localAttribute);",
+        "                    }",
+        "                }",
+        "",
+        "                // If all else fails, try to get the value from the users ssoToken",
+        "                if (attributeValues == null || attributeValues.isEmpty()) {",
+        "                    logger.message(debugMethod + \"User profile does not have value for {}, checking SSOToken.\", localAttribute);",
+        "                    attributeValues = new java.util.HashSet(idpAttributeMapperScriptHelper.getPropertySet(session, localAttribute));",
+        "                }",
+        "            }",
+        "",
+        "            if (attributeValues == null || attributeValues.isEmpty()) {",
+        "                logger.message(debugMethod + \"{} not found in user profile or SSOToken.\", localAttribute);",
+        "            } else {",
+        "                attributes.add(idpAttributeMapperScriptHelper.createSAMLAttribute(samlAttribute, nameFormat, attributeValues));",
+        "            }",
+        "        }",
+        "",
+        "        return attributes;",
+        "",
+        "    } catch (error) {",
+        "        logger.error(debugMethod + \"Error mapping IDP attributes. \" + error);",
+        "        throw new frJava.SAML2Exception(error);",
+        "    }",
+        "}",
+        "",
+        "getAttributes();"
+      ],
+      "default": false,
+      "language": "JAVASCRIPT",
+      "context": "SAML2_IDP_ATTRIBUTE_MAPPER",
+      "createdBy": "null",
+      "creationDate": 0,
+      "lastModifiedBy": "null",
+      "lastModifiedDate": 0
+    },
+    "5b29c5b7-b161-4a42-a41f-d6c85316b951": {
+      "_id": "5b29c5b7-b161-4a42-a41f-d6c85316b951",
+      "name": "Saml2 IDP Adapter Script",
+      "description": null,
+      "script": [
+        "/*",
+        " * Copyright 2021 ForgeRock AS. All Rights Reserved",
+        " * Use of this code requires a commercial software license with ForgeRock AS.",
+        " * or with one of its affiliates. All use shall be exclusively subject",
+        " * to such license between the licensee and ForgeRock AS.",
+        " */",
+        "",
+        "/*",
+        " * The script has these top level functions that could be executed during a SAML2 flow.",
+        " *      - preSingleSignOn",
+        " *      - preAuthentication",
+        " *      - preSendResponse",
+        " *      - preSignResponse",
+        " *      - preSendFailureResponse",
+        " *",
+        " * Please see the javadoc for the interface definition and more information about these methods.",
+        " * https://backstage.forgerock.com/docs/am/7.2/apidocs/com/sun/identity/saml2/plugins/SAML2IdentityProviderAdapter.html",
+        " * Note that the initialize method is not supported in the scripts.",
+        " *",
+        " * Defined variables. Check the documentation on the respective functions for the variables available to it.",
+        " *",
+        " * hostedEntityId - String",
+        " *     Entity ID for the hosted IDP",
+        " * realm - String",
+        " *     Realm of the hosted IDP",
+        " * idpAdapterScriptHelper - IdpAdapterScriptHelper (1)",
+        " *     An instance of IdpAdapterScriptHelper containing helper methods. See Javadoc for more details.",
+        " * request - HttpServletRequest (2)",
+        " *     Servlet request object",
+        " * response - HttpServletResponse (3)",
+        " *     Servlet response object",
+        " * authnRequest - AuthnRequest (4)",
+        " *     The original authentication request sent from SP",
+        " * reqId - String",
+        " *     The id to use for continuation of processing if the adapter redirects",
+        " * res - Response (5)",
+        " *     The SAML Response",
+        " * session - SSOToken (6)",
+        " *     The single sign-on session. The reference type of this is Object and would need to be casted to SSOToken.",
+        " * relayState - String",
+        " *     The relayState that will be used in the redirect",
+        " * faultCode - String",
+        " *     the fault code that will be returned in the SAML response",
+        " * faultDetail - String",
+        " *     the fault detail that will be returned in the SAML response",
+        " * logger - Logger instance",
+        " *     https://backstage.forgerock.com/docs/am/7/scripting-guide/scripting-api-global-logger.html#scripting-api-global-logger.",
+        " *     Corresponding log files will be prefixed with: scripts.<script name>",
+        " *",
+        " * Throws SAML2Exception (7):",
+        " *     for any exceptions occurring in the adapter. The federation process will continue",
+        " *",
+        " * Class reference:",
+        " * (1) idpAdapterScriptHelper - https://backstage.forgerock.com/docs/am/7.2/apidocs/com/sun/identity/saml2/plugins/scripted/IdpAdapterScriptHelper.html.",
+        " * (2) HttpServletRequest - https://tomcat.apache.org/tomcat-7.0-doc/servletapi/javax/servlet/http/HttpServletRequest.html.",
+        " * (3) HttpServletResponse - https://tomcat.apache.org/tomcat-7.0-doc/servletapi/javax/servlet/http/HttpServletResponse.html.",
+        " * (4) AuthnRequest - https://backstage.forgerock.com/docs/am/7.2/apidocs/com/sun/identity/saml2/protocol/AuthnRequest.html.",
+        " * (5) Response - https://backstage.forgerock.com/docs/am/7.2/apidocs/com/sun/identity/saml2/protocol/Response.html.",
+        " * (6) SSOToken - https://backstage.forgerock.com/docs/am/7.2/apidocs/com/iplanet/sso/SSOToken.html.",
+        " * (7) SAML2Exception - https://backstage.forgerock.com/docs/am/7.2/apidocs/com/sun/identity/saml2/common/SAML2Exception.html.",
+        " */",
+        "",
+        "/*",
+        " * Template/default script for SAML2 IDP Adapter scripted plugin.",
+        " */",
+        "",
+        "/*",
+        " * Available variables for preSingleSignOn:",
+        " *     hostedEntityId",
+        " *     realm",
+        " *     idpAdapterScriptHelper",
+        " *     request",
+        " *     authnRequest",
+        " *     response",
+        " *     reqId",
+        " *     logger",
+        " *",
+        " * Return - true if browser redirection is happening after processing, false otherwise. Default to false.",
+        " */",
+        "function preSingleSignOn () {",
+        "    return false;",
+        "}",
+        "",
+        "/*",
+        " * Available variables for preAuthentication:",
+        " *     hostedEntityId",
+        " *     realm",
+        " *     idpAdapterScriptHelper",
+        " *     request",
+        " *     authnRequest",
+        " *     response",
+        " *     reqId",
+        " *     session",
+        " *     relayState",
+        " *     logger",
+        " *",
+        " * Return - true if browser redirection is happening after processing, false otherwise. Default to false.",
+        " */",
+        "function preAuthentication () {",
+        "    return false;",
+        "}",
+        "",
+        "/*",
+        " * Available variables for preSendResponse:",
+        " *     hostedEntityId",
+        " *     realm",
+        " *     idpAdapterScriptHelper",
+        " *     request",
+        " *     authnRequest",
+        " *     response",
+        " *     reqId",
+        " *     session",
+        " *     relayState",
+        " *     logger",
+        " *",
+        " * Return - true if browser redirection happened after processing, false otherwise. Default to false.",
+        " */",
+        "function preSendResponse () {",
+        "    return false;",
+        "}",
+        "",
+        "/*",
+        " * Available variables for preSignResponse:",
+        " *     hostedEntityId",
+        " *     realm",
+        " *     idpAdapterScriptHelper",
+        " *     request",
+        " *     authnRequest",
+        " *     session",
+        " *     relayState",
+        " *     res",
+        " *     logger",
+        " */",
+        "function preSignResponse () {",
+        "}",
+        "",
+        "/*",
+        " * Available variables for preSendFailureResponse:",
+        " *     hostedEntityId",
+        " *     realm",
+        " *     idpAdapterScriptHelper",
+        " *     request",
+        " *     response",
+        " *     faultCode",
+        " *     faultDetail",
+        " *     logger",
+        " */",
+        "function preSendFailureResponse () {",
+        "}"
+      ],
+      "default": false,
+      "language": "JAVASCRIPT",
+      "context": "SAML2_IDP_ADAPTER",
+      "createdBy": "null",
+      "creationDate": 0,
+      "lastModifiedBy": "null",
+      "lastModifiedDate": 0
+    }
+  },
+  "saml": {
+    "hosted": {
+      "aHR0cHM6Ly9pZGMuc2NoZXViZXIuaW8vYW0vc2FtbDIvSURQQXp1cmU": {
+        "_id": "aHR0cHM6Ly9pZGMuc2NoZXViZXIuaW8vYW0vc2FtbDIvSURQQXp1cmU",
+        "_rev": "1637076051",
+        "entityId": "https://idc.scheuber.io/am/saml2/IDPAzure",
+        "identityProvider": {
+          "assertionContent": {
+            "signingAndEncryption": {
+              "requestResponseSigning": {
+                "authenticationRequest": false,
+                "artifactResolve": false,
+                "logoutRequest": false,
+                "logoutResponse": false,
+                "manageNameIdRequest": false,
+                "manageNameIdResponse": false
+              },
+              "encryption": {
+                "nameIdEncryption": false
+              },
+              "secretIdAndAlgorithms": {}
+            },
+            "nameIdFormat": {
+              "nameIdFormatList": [
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent",
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:transient",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:WindowsDomainQualifiedName",
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:kerberos",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName"
+              ],
+              "nameIdValueMap": [
+                {
+                  "key": "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent",
+                  "value": "mail",
+                  "binary": false
+                },
+                {
+                  "key": "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress",
+                  "value": "mail",
+                  "binary": false
+                }
+              ]
+            },
+            "authenticationContext": {
+              "authenticationContextMapper": "com.sun.identity.saml2.plugins.DefaultIDPAuthnContextMapper",
+              "authContextItems": [
+                {
+                  "contextReference": "urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport",
+                  "key": "service",
+                  "value": "Login",
+                  "level": 0
+                }
+              ]
+            },
+            "assertionTime": {
+              "notBeforeTimeSkew": 600,
+              "effectiveTime": 600
+            },
+            "basicAuthentication": {
+              "enabled": false
+            },
+            "assertionCache": {
+              "enabled": false
+            }
+          },
+          "assertionProcessing": {
+            "attributeMapper": {
+              "attributeMapper": "com.sun.identity.saml2.plugins.DefaultIDPAttributeMapper",
+              "attributeMap": [
+                {
+                  "samlAttribute": "IDPEmail",
+                  "localAttribute": "mail",
+                  "binary": false
+                },
+                {
+                  "samlAttribute": "UOPClassID",
+                  "localAttribute": "UOPClassID",
+                  "binary": false
+                }
+              ]
+            },
+            "accountMapper": {
+              "accountMapper": "com.sun.identity.saml2.plugins.DefaultIDPAccountMapper",
+              "disableNameIdPersistence": true
+            },
+            "localConfiguration": {
+              "authUrl": ""
+            }
+          },
+          "services": {
+            "metaAlias": "/alpha/IDPAzure",
+            "serviceAttributes": {
+              "artifactResolutionService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://idc.scheuber.io/am/ArtifactResolver/metaAlias/alpha/IDPAzure"
+                }
+              ],
+              "singleLogoutService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://idc.scheuber.io/am/IDPSloRedirect/metaAlias/alpha/IDPAzure",
+                  "responseLocation": "https://idc.scheuber.io/am/IDPSloRedirect/metaAlias/alpha/IDPAzure"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://idc.scheuber.io/am/IDPSloPOST/metaAlias/alpha/IDPAzure",
+                  "responseLocation": "https://idc.scheuber.io/am/IDPSloPOST/metaAlias/alpha/IDPAzure"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://idc.scheuber.io/am/IDPSloSoap/metaAlias/alpha/IDPAzure"
+                }
+              ],
+              "nameIdService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://idc.scheuber.io/am/IDPMniRedirect/metaAlias/alpha/IDPAzure",
+                  "responseLocation": "https://idc.scheuber.io/am/IDPMniRedirect/metaAlias/alpha/IDPAzure"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://idc.scheuber.io/am/IDPMniPOST/metaAlias/alpha/IDPAzure",
+                  "responseLocation": "https://idc.scheuber.io/am/IDPMniPOST/metaAlias/alpha/IDPAzure"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://idc.scheuber.io/am/IDPMniSoap/metaAlias/alpha/IDPAzure"
+                }
+              ],
+              "singleSignOnService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://idc.scheuber.io/am/SSORedirect/metaAlias/alpha/IDPAzure"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://idc.scheuber.io/am/SSOPOST/metaAlias/alpha/IDPAzure"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://idc.scheuber.io/am/SSOSoap/metaAlias/alpha/IDPAzure"
+                }
+              ]
+            },
+            "nameIdMapping": [
+              {
+                "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                "location": "https://idc.scheuber.io/am/NIMSoap/metaAlias/alpha/IDPAzure"
+              }
+            ],
+            "assertionIdRequest": [
+              {
+                "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                "location": "https://idc.scheuber.io/am/AIDReqSoap/IDPRole/metaAlias/alpha/IDPAzure"
+              },
+              {
+                "binding": "urn:oasis:names:tc:SAML:2.0:bindings:URI",
+                "location": "https://idc.scheuber.io/am/AIDReqUri/IDPRole/metaAlias/alpha/IDPAzure"
+              }
+            ]
+          },
+          "advanced": {
+            "saeConfiguration": {
+              "idpUrl": "https://idc.scheuber.io/am/idpsaehandler/metaAlias/alpha/IDPAzure"
+            },
+            "ecpConfiguration": {
+              "idpSessionMapper": "com.sun.identity.saml2.plugins.DefaultIDPECPSessionMapper"
+            },
+            "sessionSynchronization": {
+              "enabled": false
+            },
+            "idpFinderImplementation": {
+              "enableProxyIdpFinderForAllSps": false
+            },
+            "relayStateUrlList": {},
+            "idpAdapter": {
+              "idpAdapterScript": "85523e71-2d77-4577-b078-6f9674cc54e2"
+            }
+          }
+        }
+      },
+      "U1BBenVyZQ": {
+        "_id": "U1BBenVyZQ",
+        "_rev": "-1930164078",
+        "entityId": "SPAzure",
+        "serviceProvider": {
+          "assertionContent": {
+            "signingAndEncryption": {
+              "requestResponseSigning": {},
+              "encryption": {},
+              "secretIdAndAlgorithms": {}
+            },
+            "nameIdFormat": {
+              "nameIdFormatList": [
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent",
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:transient",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:WindowsDomainQualifiedName",
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:kerberos",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName"
+              ]
+            },
+            "authenticationContext": {
+              "authenticationContextMapper": "com.sun.identity.saml2.plugins.DefaultSPAuthnContextMapper",
+              "authContextItems": [
+                {
+                  "contextReference": "urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport",
+                  "level": 0,
+                  "defaultItem": true
+                }
+              ],
+              "authenticationComparisonType": "Exact",
+              "includeRequestedAuthenticationContext": true
+            },
+            "assertionTimeSkew": 300,
+            "basicAuthentication": {}
+          },
+          "assertionProcessing": {
+            "attributeMapper": {
+              "attributeMapper": "com.sun.identity.saml2.plugins.DefaultSPAttributeMapper",
+              "attributeMap": [
+                {
+                  "key": "http://schemas.microsoft.com/identity/claims/displayname",
+                  "value": "cn"
+                },
+                {
+                  "key": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname",
+                  "value": "givenName"
+                },
+                {
+                  "key": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname",
+                  "value": "sn"
+                },
+                {
+                  "key": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress",
+                  "value": "mail"
+                },
+                {
+                  "key": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name",
+                  "value": "uid"
+                }
+              ]
+            },
+            "autoFederation": {
+              "autoFedEnabled": false
+            },
+            "accountMapping": {
+              "spAccountMapper": "com.sun.identity.saml2.plugins.DefaultSPAccountMapper",
+              "useNameIDAsSPUserID": true
+            },
+            "responseArtifactMessageEncoding": {
+              "encoding": "URI"
+            },
+            "url": {},
+            "defaultRelayState": "https://idc.scheuber.io/enduser/?realm=alpha#/profile",
+            "adapter": {}
+          },
+          "services": {
+            "metaAlias": "/alpha/SPAzure",
+            "serviceAttributes": {
+              "singleLogoutService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://idc.scheuber.io/am/SPSloRedirect/metaAlias/alpha/SPAzure",
+                  "responseLocation": "https://idc.scheuber.io/am/SPSloRedirect/metaAlias/alpha/SPAzure"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://idc.scheuber.io/am/SPSloPOST/metaAlias/alpha/SPAzure",
+                  "responseLocation": "https://idc.scheuber.io/am/SPSloPOST/metaAlias/alpha/SPAzure"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://idc.scheuber.io/am/SPSloSoap/metaAlias/alpha/SPAzure"
+                }
+              ],
+              "nameIdService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://idc.scheuber.io/am/SPMniRedirect/metaAlias/alpha/SPAzure",
+                  "responseLocation": "https://idc.scheuber.io/am/SPMniRedirect/metaAlias/alpha/SPAzure"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://idc.scheuber.io/am/SPMniPOST/metaAlias/alpha/SPAzure",
+                  "responseLocation": "https://idc.scheuber.io/am/SPMniPOST/metaAlias/alpha/SPAzure"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://idc.scheuber.io/am/SPMniSoap/metaAlias/alpha/SPAzure",
+                  "responseLocation": "https://idc.scheuber.io/am/SPMniSoap/metaAlias/alpha/SPAzure"
+                }
+              ],
+              "assertionConsumerService": [
+                {
+                  "isDefault": true,
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact",
+                  "location": "https://idc.scheuber.io/am/Consumer/metaAlias/alpha/SPAzure",
+                  "index": 0
+                },
+                {
+                  "isDefault": false,
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://idc.scheuber.io/am/Consumer/metaAlias/alpha/SPAzure",
+                  "index": 1
+                },
+                {
+                  "isDefault": false,
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:PAOS",
+                  "location": "https://idc.scheuber.io/am/Consumer/ECP/metaAlias/alpha/SPAzure",
+                  "index": 2
+                }
+              ]
+            }
+          },
+          "advanced": {
+            "saeConfiguration": {
+              "spUrl": "https://idc.scheuber.io/am/spsaehandler/metaAlias/alpha/SPAzure"
+            },
+            "ecpConfiguration": {
+              "ecpRequestIdpListFinderImpl": "com.sun.identity.saml2.plugins.ECPIDPFinder"
+            },
+            "idpProxy": {},
+            "relayStateUrlList": {}
+          }
+        }
+      },
+      "aHR0cHM6Ly9pZGMuc2NoZXViZXIuaW8vYW0vc2FtbDIvSURQRmVkbGV0": {
+        "_id": "aHR0cHM6Ly9pZGMuc2NoZXViZXIuaW8vYW0vc2FtbDIvSURQRmVkbGV0",
+        "_rev": "-1020599606",
+        "entityId": "https://idc.scheuber.io/am/saml2/IDPFedlet",
+        "identityProvider": {
+          "assertionContent": {
+            "signingAndEncryption": {
+              "requestResponseSigning": {},
+              "encryption": {},
+              "secretIdAndAlgorithms": {}
+            },
+            "nameIdFormat": {
+              "nameIdFormatList": [
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent",
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:transient",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:WindowsDomainQualifiedName",
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:kerberos",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName"
+              ],
+              "nameIdValueMap": [
+                {
+                  "key": "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress",
+                  "value": "mail",
+                  "binary": false
+                }
+              ]
+            },
+            "authenticationContext": {
+              "authenticationContextMapper": "com.sun.identity.saml2.plugins.DefaultIDPAuthnContextMapper",
+              "authContextItems": [
+                {
+                  "contextReference": "urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport",
+                  "level": 0
+                }
+              ]
+            },
+            "assertionTime": {
+              "notBeforeTimeSkew": 600,
+              "effectiveTime": 600
+            },
+            "basicAuthentication": {},
+            "assertionCache": {}
+          },
+          "assertionProcessing": {
+            "attributeMapper": {
+              "attributeMapper": "com.sun.identity.saml2.plugins.DefaultIDPAttributeMapper"
+            },
+            "accountMapper": {
+              "accountMapper": "com.sun.identity.saml2.plugins.DefaultIDPAccountMapper"
+            },
+            "localConfiguration": {}
+          },
+          "services": {
+            "metaAlias": "/alpha/IDPFedlet",
+            "serviceAttributes": {
+              "artifactResolutionService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://idc.scheuber.io/am/ArtifactResolver/metaAlias/alpha/IDPFedlet"
+                }
+              ],
+              "singleLogoutService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://idc.scheuber.io/am/IDPSloRedirect/metaAlias/alpha/IDPFedlet",
+                  "responseLocation": "https://idc.scheuber.io/am/IDPSloRedirect/metaAlias/alpha/IDPFedlet"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://idc.scheuber.io/am/IDPSloPOST/metaAlias/alpha/IDPFedlet",
+                  "responseLocation": "https://idc.scheuber.io/am/IDPSloPOST/metaAlias/alpha/IDPFedlet"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://idc.scheuber.io/am/IDPSloSoap/metaAlias/alpha/IDPFedlet"
+                }
+              ],
+              "nameIdService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://idc.scheuber.io/am/IDPMniRedirect/metaAlias/alpha/IDPFedlet",
+                  "responseLocation": "https://idc.scheuber.io/am/IDPMniRedirect/metaAlias/alpha/IDPFedlet"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://idc.scheuber.io/am/IDPMniPOST/metaAlias/alpha/IDPFedlet",
+                  "responseLocation": "https://idc.scheuber.io/am/IDPMniPOST/metaAlias/alpha/IDPFedlet"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://idc.scheuber.io/am/IDPMniSoap/metaAlias/alpha/IDPFedlet"
+                }
+              ],
+              "singleSignOnService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://idc.scheuber.io/am/SSORedirect/metaAlias/alpha/IDPFedlet"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://idc.scheuber.io/am/SSOPOST/metaAlias/alpha/IDPFedlet"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://idc.scheuber.io/am/SSOSoap/metaAlias/alpha/IDPFedlet"
+                }
+              ]
+            },
+            "nameIdMapping": [
+              {
+                "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                "location": "https://idc.scheuber.io/am/NIMSoap/metaAlias/alpha/IDPFedlet"
+              }
+            ],
+            "assertionIdRequest": [
+              {
+                "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                "location": "https://idc.scheuber.io/am/AIDReqSoap/IDPRole/metaAlias/alpha/IDPFedlet"
+              },
+              {
+                "binding": "urn:oasis:names:tc:SAML:2.0:bindings:URI",
+                "location": "https://idc.scheuber.io/am/AIDReqUri/IDPRole/metaAlias/alpha/IDPFedlet"
+              }
+            ]
+          },
+          "advanced": {
+            "saeConfiguration": {
+              "idpUrl": "https://idc.scheuber.io/am/idpsaehandler/metaAlias/alpha/IDPFedlet"
+            },
+            "ecpConfiguration": {
+              "idpSessionMapper": "com.sun.identity.saml2.plugins.DefaultIDPECPSessionMapper"
+            },
+            "sessionSynchronization": {},
+            "idpFinderImplementation": {},
+            "relayStateUrlList": {},
+            "idpAdapter": {}
+          }
+        }
+      },
+      "dm9sa2VyRGV2U1A": {
+        "_id": "dm9sa2VyRGV2U1A",
+        "_rev": "-1233096083",
+        "entityId": "volkerDevSP",
+        "serviceProvider": {
+          "assertionContent": {
+            "signingAndEncryption": {
+              "requestResponseSigning": {},
+              "encryption": {},
+              "secretIdAndAlgorithms": {}
+            },
+            "nameIdFormat": {
+              "nameIdFormatList": [
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent",
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:transient",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:WindowsDomainQualifiedName",
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:kerberos",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName"
+              ]
+            },
+            "authenticationContext": {
+              "authenticationContextMapper": "com.sun.identity.saml2.plugins.DefaultSPAuthnContextMapper",
+              "authContextItems": [
+                {
+                  "contextReference": "urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport",
+                  "level": 0,
+                  "defaultItem": true
+                }
+              ],
+              "authenticationComparisonType": "Exact",
+              "includeRequestedAuthenticationContext": true
+            },
+            "assertionTimeSkew": 300,
+            "basicAuthentication": {}
+          },
+          "assertionProcessing": {
+            "attributeMapper": {
+              "attributeMapper": "com.sun.identity.saml2.plugins.DefaultSPAttributeMapper",
+              "attributeMap": [
+                {
+                  "key": "*",
+                  "value": "*"
+                }
+              ]
+            },
+            "autoFederation": {
+              "autoFedEnabled": false
+            },
+            "accountMapping": {
+              "spAccountMapper": "com.sun.identity.saml2.plugins.DefaultSPAccountMapper",
+              "useNameIDAsSPUserID": true
+            },
+            "responseArtifactMessageEncoding": {
+              "encoding": "URI"
+            },
+            "url": {},
+            "adapter": {}
+          },
+          "services": {
+            "metaAlias": "/alpha/volkerDevSP",
+            "serviceAttributes": {
+              "singleLogoutService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://openam-volker-dev.forgeblocks.com/am/SPSloRedirect/metaAlias/alpha/volkerDevSP",
+                  "responseLocation": "https://openam-volker-dev.forgeblocks.com/am/SPSloRedirect/metaAlias/alpha/volkerDevSP"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://openam-volker-dev.forgeblocks.com/am/SPSloPOST/metaAlias/alpha/volkerDevSP",
+                  "responseLocation": "https://openam-volker-dev.forgeblocks.com/am/SPSloPOST/metaAlias/alpha/volkerDevSP"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://openam-volker-dev.forgeblocks.com/am/SPSloSoap/metaAlias/alpha/volkerDevSP"
+                }
+              ],
+              "nameIdService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://openam-volker-dev.forgeblocks.com/am/SPMniPOST/metaAlias/alpha/volkerDevSP",
+                  "responseLocation": "https://openam-volker-dev.forgeblocks.com/am/SPMniPOST/metaAlias/alpha/volkerDevSP"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://openam-volker-dev.forgeblocks.com/am/SPMniRedirect/metaAlias/alpha/volkerDevSP",
+                  "responseLocation": "https://openam-volker-dev.forgeblocks.com/am/SPMniRedirect/metaAlias/alpha/volkerDevSP"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://openam-volker-dev.forgeblocks.com/am/SPMniSoap/metaAlias/alpha/volkerDevSP",
+                  "responseLocation": "https://openam-volker-dev.forgeblocks.com/am/SPMniSoap/metaAlias/alpha/volkerDevSP"
+                }
+              ],
+              "assertionConsumerService": [
+                {
+                  "isDefault": true,
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://openam-volker-dev.forgeblocks.com/am/Consumer/metaAlias/alpha/volkerDevSP",
+                  "index": 1
+                }
+              ]
+            }
+          },
+          "advanced": {
+            "saeConfiguration": {
+              "spUrl": "https://openam-volker-dev.forgeblocks.com/am/spsaehandler/metaAlias/alpha/volkerDevSP"
+            },
+            "ecpConfiguration": {
+              "ecpRequestIdpListFinderImpl": "com.sun.identity.saml2.plugins.ECPIDPFinder"
+            },
+            "idpProxy": {},
+            "relayStateUrlList": {}
+          }
+        }
+      },
+      "aVNQQXp1cmU": {
+        "_id": "aVNQQXp1cmU",
+        "_rev": "1379466460",
+        "entityId": "iSPAzure",
+        "serviceProvider": {
+          "assertionContent": {
+            "signingAndEncryption": {
+              "requestResponseSigning": {},
+              "encryption": {},
+              "secretIdAndAlgorithms": {}
+            },
+            "nameIdFormat": {
+              "nameIdFormatList": [
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent",
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:transient",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:WindowsDomainQualifiedName",
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:kerberos",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName"
+              ]
+            },
+            "authenticationContext": {
+              "authenticationContextMapper": "com.sun.identity.saml2.plugins.DefaultSPAuthnContextMapper",
+              "authContextItems": [
+                {
+                  "contextReference": "urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport",
+                  "level": 0,
+                  "defaultItem": true
+                }
+              ],
+              "authenticationComparisonType": "Exact",
+              "includeRequestedAuthenticationContext": true
+            },
+            "assertionTimeSkew": 300,
+            "basicAuthentication": {}
+          },
+          "assertionProcessing": {
+            "attributeMapper": {
+              "attributeMapper": "com.sun.identity.saml2.plugins.DefaultSPAttributeMapper",
+              "attributeMap": [
+                {
+                  "key": "http://schemas.microsoft.com/identity/claims/displayname",
+                  "value": "cn"
+                },
+                {
+                  "key": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname",
+                  "value": "givenName"
+                },
+                {
+                  "key": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname",
+                  "value": "sn"
+                },
+                {
+                  "key": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress",
+                  "value": "mail"
+                },
+                {
+                  "key": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name",
+                  "value": "uid"
+                }
+              ]
+            },
+            "autoFederation": {
+              "autoFedEnabled": false
+            },
+            "accountMapping": {
+              "spAccountMapper": "com.sun.identity.saml2.plugins.DefaultSPAccountMapper",
+              "useNameIDAsSPUserID": true
+            },
+            "responseArtifactMessageEncoding": {
+              "encoding": "URI"
+            },
+            "url": {},
+            "adapter": {}
+          },
+          "services": {
+            "metaAlias": "/alpha/iSPAzure",
+            "serviceAttributes": {
+              "singleLogoutService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://idc.scheuber.io/am/SPSloRedirect/metaAlias/alpha/iSPAzure",
+                  "responseLocation": "https://idc.scheuber.io/am/SPSloRedirect/metaAlias/alpha/iSPAzure"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://idc.scheuber.io/am/SPSloPOST/metaAlias/alpha/iSPAzure",
+                  "responseLocation": "https://idc.scheuber.io/am/SPSloPOST/metaAlias/alpha/iSPAzure"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://idc.scheuber.io/am/SPSloSoap/metaAlias/alpha/iSPAzure"
+                }
+              ],
+              "nameIdService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://idc.scheuber.io/am/SPMniRedirect/metaAlias/alpha/iSPAzure",
+                  "responseLocation": "https://idc.scheuber.io/am/SPMniRedirect/metaAlias/alpha/iSPAzure"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://idc.scheuber.io/am/SPMniPOST/metaAlias/alpha/iSPAzure",
+                  "responseLocation": "https://idc.scheuber.io/am/SPMniPOST/metaAlias/alpha/iSPAzure"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://idc.scheuber.io/am/SPMniSoap/metaAlias/alpha/iSPAzure",
+                  "responseLocation": "https://idc.scheuber.io/am/SPMniSoap/metaAlias/alpha/iSPAzure"
+                }
+              ],
+              "assertionConsumerService": [
+                {
+                  "isDefault": true,
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact",
+                  "location": "https://idc.scheuber.io/am/AuthConsumer/metaAlias/alpha/iSPAzure",
+                  "index": 0
+                },
+                {
+                  "isDefault": false,
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://idc.scheuber.io/am/AuthConsumer/metaAlias/alpha/iSPAzure",
+                  "index": 1
+                },
+                {
+                  "isDefault": false,
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:PAOS",
+                  "location": "https://idc.scheuber.io/am/Consumer/ECP/metaAlias/alpha/iSPAzure",
+                  "index": 2
+                }
+              ]
+            }
+          },
+          "advanced": {
+            "saeConfiguration": {
+              "spUrl": "https://idc.scheuber.io/am/spsaehandler/metaAlias/alpha/iSPAzure"
+            },
+            "ecpConfiguration": {
+              "ecpRequestIdpListFinderImpl": "com.sun.identity.saml2.plugins.ECPIDPFinder"
+            },
+            "idpProxy": {},
+            "relayStateUrlList": {}
+          }
+        }
+      },
+      "aHR0cHM6Ly9pZGMuc2NoZXViZXIuaW8vYW0vc2FtbDIvSURQQnJvYWRjb20": {
+        "_id": "aHR0cHM6Ly9pZGMuc2NoZXViZXIuaW8vYW0vc2FtbDIvSURQQnJvYWRjb20",
+        "_rev": "-728528736",
+        "entityId": "https://idc.scheuber.io/am/saml2/IDPBroadcom",
+        "identityProvider": {
+          "assertionContent": {
+            "signingAndEncryption": {
+              "requestResponseSigning": {},
+              "encryption": {},
+              "secretIdAndAlgorithms": {}
+            },
+            "nameIdFormat": {
+              "nameIdFormatList": [
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent",
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:transient",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:WindowsDomainQualifiedName",
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:kerberos",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName"
+              ],
+              "nameIdValueMap": [
+                {
+                  "key": "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress",
+                  "value": "mail",
+                  "binary": false
+                }
+              ]
+            },
+            "authenticationContext": {
+              "authenticationContextMapper": "com.sun.identity.saml2.plugins.DefaultIDPAuthnContextMapper",
+              "authContextItems": [
+                {
+                  "contextReference": "urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport",
+                  "level": 0
+                }
+              ]
+            },
+            "assertionTime": {
+              "notBeforeTimeSkew": 600,
+              "effectiveTime": 600
+            },
+            "basicAuthentication": {},
+            "assertionCache": {}
+          },
+          "assertionProcessing": {
+            "attributeMapper": {
+              "attributeMapper": "com.sun.identity.saml2.plugins.DefaultIDPAttributeMapper",
+              "attributeMapperScript": "90c4eca5-05f0-42f5-b9bf-88b693eabbbd"
+            },
+            "accountMapper": {
+              "accountMapper": "com.sun.identity.saml2.plugins.DefaultIDPAccountMapper",
+              "disableNameIdPersistence": false
+            },
+            "localConfiguration": {}
+          },
+          "services": {
+            "metaAlias": "/alpha/IDPBroadcom",
+            "serviceAttributes": {
+              "artifactResolutionService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://idc.scheuber.io/am/ArtifactResolver/metaAlias/alpha/IDPBroadcom"
+                }
+              ],
+              "singleLogoutService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://idc.scheuber.io/am/IDPSloRedirect/metaAlias/alpha/IDPBroadcom",
+                  "responseLocation": "https://idc.scheuber.io/am/IDPSloRedirect/metaAlias/alpha/IDPBroadcom"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://idc.scheuber.io/am/IDPSloPOST/metaAlias/alpha/IDPBroadcom",
+                  "responseLocation": "https://idc.scheuber.io/am/IDPSloPOST/metaAlias/alpha/IDPBroadcom"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://idc.scheuber.io/am/IDPSloSoap/metaAlias/alpha/IDPBroadcom"
+                }
+              ],
+              "nameIdService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://idc.scheuber.io/am/IDPMniRedirect/metaAlias/alpha/IDPBroadcom",
+                  "responseLocation": "https://idc.scheuber.io/am/IDPMniRedirect/metaAlias/alpha/IDPBroadcom"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://idc.scheuber.io/am/IDPMniPOST/metaAlias/alpha/IDPBroadcom",
+                  "responseLocation": "https://idc.scheuber.io/am/IDPMniPOST/metaAlias/alpha/IDPBroadcom"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://idc.scheuber.io/am/IDPMniSoap/metaAlias/alpha/IDPBroadcom"
+                }
+              ],
+              "singleSignOnService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://idc.scheuber.io/am/SSORedirect/metaAlias/alpha/IDPBroadcom"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://idc.scheuber.io/am/SSOPOST/metaAlias/alpha/IDPBroadcom"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://idc.scheuber.io/am/SSOSoap/metaAlias/alpha/IDPBroadcom"
+                }
+              ]
+            },
+            "nameIdMapping": [
+              {
+                "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                "location": "https://idc.scheuber.io/am/NIMSoap/metaAlias/alpha/IDPBroadcom"
+              }
+            ],
+            "assertionIdRequest": [
+              {
+                "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                "location": "https://idc.scheuber.io/am/AIDReqSoap/IDPRole/metaAlias/alpha/IDPBroadcom"
+              },
+              {
+                "binding": "urn:oasis:names:tc:SAML:2.0:bindings:URI",
+                "location": "https://idc.scheuber.io/am/AIDReqUri/IDPRole/metaAlias/alpha/IDPBroadcom"
+              }
+            ]
+          },
+          "advanced": {
+            "saeConfiguration": {
+              "idpUrl": "https://idc.scheuber.io/am/idpsaehandler/metaAlias/alpha/IDPBroadcom"
+            },
+            "ecpConfiguration": {
+              "idpSessionMapper": "com.sun.identity.saml2.plugins.DefaultIDPECPSessionMapper"
+            },
+            "sessionSynchronization": {
+              "enabled": false
+            },
+            "idpFinderImplementation": {
+              "enableProxyIdpFinderForAllSps": false
+            },
+            "relayStateUrlList": {},
+            "idpAdapter": {
+              "idpAdapterScript": "5b29c5b7-b161-4a42-a41f-d6c85316b951"
+            }
+          }
+        }
+      }
+    },
+    "remote": {
+      "aHR0cHM6Ly9zdHMud2luZG93cy5uZXQvNzExZmZhOWMtNTk3Mi00NzEzLWFjZTMtNjg4Yzk3MzI2MTRhLw": {
+        "_id": "aHR0cHM6Ly9zdHMud2luZG93cy5uZXQvNzExZmZhOWMtNTk3Mi00NzEzLWFjZTMtNjg4Yzk3MzI2MTRhLw",
+        "_rev": "740333789",
+        "entityId": "https://sts.windows.net/711ffa9c-5972-4713-ace3-688c9732614a/",
+        "identityProvider": {
+          "assertionContent": {
+            "signingAndEncryption": {
+              "requestResponseSigning": {},
+              "encryption": {}
+            },
+            "nameIdFormat": {},
+            "basicAuthentication": {}
+          },
+          "services": {
+            "serviceAttributes": {
+              "singleLogoutService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://login.microsoftonline.com/711ffa9c-5972-4713-ace3-688c9732614a/saml2"
+                }
+              ],
+              "singleSignOnService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://login.microsoftonline.com/711ffa9c-5972-4713-ace3-688c9732614a/saml2"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://login.microsoftonline.com/711ffa9c-5972-4713-ace3-688c9732614a/saml2"
+                }
+              ]
+            }
+          }
+        }
+      },
+      "aWRw": {
+        "_id": "aWRw",
+        "_rev": "-599047583",
+        "entityId": "idp",
+        "identityProvider": {
+          "assertionContent": {
+            "signingAndEncryption": {
+              "requestResponseSigning": {
+                "authenticationRequest": false
+              },
+              "encryption": {}
+            },
+            "nameIdFormat": {
+              "nameIdFormatList": [
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified"
+              ]
+            },
+            "basicAuthentication": {}
+          },
+          "services": {
+            "serviceAttributes": {
+              "artifactResolutionService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://openam-admin-fed.forgeblocks.com/am/ArtifactResolver/metaAlias/alpha/idp"
+                }
+              ],
+              "singleLogoutService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://openam-admin-fed.forgeblocks.com/am/IDPSloRedirect/metaAlias/alpha/idp",
+                  "responseLocation": "https://openam-admin-fed.forgeblocks.com/am/IDPSloRedirect/metaAlias/alpha/idp"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://openam-admin-fed.forgeblocks.com/am/IDPSloPOST/metaAlias/alpha/idp",
+                  "responseLocation": "https://openam-admin-fed.forgeblocks.com/am/IDPSloPOST/metaAlias/alpha/idp"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://openam-admin-fed.forgeblocks.com/am/IDPSloSoap/metaAlias/alpha/idp"
+                }
+              ],
+              "nameIdService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://openam-admin-fed.forgeblocks.com/am/IDPMniPOST/metaAlias/alpha/idp",
+                  "responseLocation": "https://openam-admin-fed.forgeblocks.com/am/IDPMniPOST/metaAlias/alpha/idp"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://openam-admin-fed.forgeblocks.com/am/IDPMniRedirect/metaAlias/alpha/idp",
+                  "responseLocation": "https://openam-admin-fed.forgeblocks.com/am/IDPMniRedirect/metaAlias/alpha/idp"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://openam-admin-fed.forgeblocks.com/am/IDPMniSoap/metaAlias/alpha/idp"
+                }
+              ],
+              "singleSignOnService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://openam-admin-fed.forgeblocks.com/am/SSOPOST/metaAlias/alpha/idp"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://openam-admin-fed.forgeblocks.com/am/SSORedirect/metaAlias/alpha/idp"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://openam-admin-fed.forgeblocks.com/am/SSOSoap/metaAlias/alpha/idp"
+                }
+              ]
+            },
+            "nameIdMapping": [
+              {
+                "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                "location": "https://openam-admin-fed.forgeblocks.com/am/NIMSoap/metaAlias/alpha/idp"
+              }
+            ]
+          }
+        }
+      },
+      "dXJuOmZlZGVyYXRpb246TWljcm9zb2Z0T25saW5l": {
+        "_id": "dXJuOmZlZGVyYXRpb246TWljcm9zb2Z0T25saW5l",
+        "_rev": "1971501705",
+        "entityId": "urn:federation:MicrosoftOnline",
+        "serviceProvider": {
+          "assertionContent": {
+            "signingAndEncryption": {
+              "requestResponseSigning": {
+                "assertion": true
+              },
+              "encryption": {}
+            },
+            "nameIdFormat": {
+              "nameIdFormatList": [
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress",
+                "urn:mace:shibboleth:1.0:nameIdentifier",
+                "urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified",
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:transient",
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent"
+              ]
+            },
+            "basicAuthentication": {}
+          },
+          "assertionProcessing": {
+            "attributeMapper": {
+              "attributeMap": [
+                {
+                  "samlAttribute": "IDPEmail",
+                  "localAttribute": "mail",
+                  "binary": false
+                },
+                {
+                  "samlAttribute": "UOPClassID",
+                  "localAttribute": "UOPClassID",
+                  "binary": false
+                }
+              ]
+            },
+            "responseArtifactMessageEncoding": {
+              "encoding": "URI"
+            }
+          },
+          "services": {
+            "serviceAttributes": {
+              "singleLogoutService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://login.microsoftonline.com/login.srf"
+                }
+              ],
+              "assertionConsumerService": [
+                {
+                  "isDefault": true,
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://login.microsoftonline.com/login.srf",
+                  "index": 0
+                },
+                {
+                  "isDefault": false,
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign",
+                  "location": "https://login.microsoftonline.com/login.srf",
+                  "index": 1
+                },
+                {
+                  "isDefault": false,
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:PAOS",
+                  "location": "https://login.microsoftonline.com/login.srf",
+                  "index": 2
+                }
+              ]
+            }
+          },
+          "advanced": {
+            "saeConfiguration": {},
+            "idpProxy": {}
+          }
+        }
+      },
+      "aHR0cHM6Ly9zYW1sLm15dGVzdHJ1bi5jb20vc3A": {
+        "_id": "aHR0cHM6Ly9zYW1sLm15dGVzdHJ1bi5jb20vc3A",
+        "_rev": "278033832",
+        "entityId": "https://saml.mytestrun.com/sp",
+        "serviceProvider": {
+          "assertionContent": {
+            "signingAndEncryption": {
+              "requestResponseSigning": {
+                "authenticationRequest": false,
+                "assertion": false
+              },
+              "encryption": {}
+            },
+            "nameIdFormat": {
+              "nameIdFormatList": [
+                "urn:oasis:names:tc:SAML:2.0:nameid-format:transient"
+              ]
+            },
+            "basicAuthentication": {
+              "enabled": false
+            }
+          },
+          "assertionProcessing": {
+            "attributeMapper": {},
+            "responseArtifactMessageEncoding": {}
+          },
+          "services": {
+            "serviceAttributes": {
+              "singleLogoutService": [
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
+                  "location": "https://saml.mytestrun.com:443/sp/fedletSloRedirect",
+                  "responseLocation": "https://saml.mytestrun.com:443/sp/fedletSloRedirect"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://saml.mytestrun.com:443/sp/fedletSloPOST",
+                  "responseLocation": "https://saml.mytestrun.com:443/sp/fedletSloPOST"
+                },
+                {
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:SOAP",
+                  "location": "https://saml.mytestrun.com:443/sp/fedletSloSoap"
+                }
+              ],
+              "assertionConsumerService": [
+                {
+                  "isDefault": true,
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
+                  "location": "https://saml.mytestrun.com:443/sp/fedletapplication",
+                  "index": 0
+                },
+                {
+                  "isDefault": false,
+                  "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact",
+                  "location": "https://saml.mytestrun.com:443/sp/fedletapplication",
+                  "index": 1
+                }
+              ]
+            }
+          },
+          "advanced": {
+            "saeConfiguration": {},
+            "idpProxy": {}
+          }
+        }
+      }
+    },
+    "metadata": {
+      "aHR0cHM6Ly9pZGMuc2NoZXViZXIuaW8vYW0vc2FtbDIvSURQQXp1cmU": [
+        "<?xml version=\"1.0\" encoding=\"UTF-8\" standalone=\"yes\"?>",
+        "<EntityDescriptor entityID=\"https://idc.scheuber.io/am/saml2/IDPAzure\" xmlns=\"urn:oasis:names:tc:SAML:2.0:metadata\" xmlns:query=\"urn:oasis:names:tc:SAML:metadata:ext:query\" xmlns:mdattr=\"urn:oasis:names:tc:SAML:metadata:attribute\" xmlns:saml=\"urn:oasis:names:tc:SAML:2.0:assertion\" xmlns:xenc=\"http://www.w3.org/2001/04/xmlenc#\" xmlns:xenc11=\"http://www.w3.org/2009/xmlenc11#\" xmlns:alg=\"urn:oasis:names:tc:SAML:metadata:algsupport\" xmlns:x509qry=\"urn:oasis:names:tc:SAML:metadata:X509:query\" xmlns:ds=\"http://www.w3.org/2000/09/xmldsig#\">",
+        "    <IDPSSODescriptor WantAuthnRequestsSigned=\"false\" protocolSupportEnumeration=\"urn:oasis:names:tc:SAML:2.0:protocol\">",
+        "        <KeyDescriptor use=\"signing\">",
+        "            <ds:KeyInfo>",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIDXzCCAkegAwIBAgIEXw0sqjANBgkqhkiG9w0BAQsFADBgMQswCQYDVQQGEwJVSzEQMA4GA1UE",
+        "CBMHQnJpc3RvbDEQMA4GA1UEBxMHQnJpc3RvbDESMBAGA1UEChMJRm9yZ2VSb2NrMRkwFwYDVQQD",
+        "ExByc2Fqd3RzaWduaW5na2V5MB4XDTIxMDMwNjAyMTgzNVoXDTMxMDMwNDAyMTgzNVowYDELMAkG",
+        "A1UEBhMCVUsxEDAOBgNVBAgTB0JyaXN0b2wxEDAOBgNVBAcTB0JyaXN0b2wxEjAQBgNVBAoTCUZv",
+        "cmdlUm9jazEZMBcGA1UEAxMQcnNhand0c2lnbmluZ2tleTCCASIwDQYJKoZIhvcNAQEBBQADggEP",
+        "ADCCAQoCggEBAI7DfQgOfXacEXp9EUBbH4PosMK36VIeZDO/gllKmJYnOsa+7FPHMJi7OETsF7sF",
+        "FkiL63+3KiqBIk1b9cIp6SWnp7Z2Hvz+WwgF6o0ZhRWbpF1FyLHZWKB2H30BdY6I3keE2xnvOsmq",
+        "X9pyTdap52WatS06GMAzpisMEZsremV49vc5zuVS//QWSmv6r0S9UNfgW1iICKfqxeYibAND2kgc",
+        "2+0I9QTabH59601aGm2bgTr+EOVtbQUEvblz7/l6b4Q4y8o+BmwXk+olPKgBruPa0XOXBpCa7b/d",
+        "SfLI7z2XHyMzqNG9IGg0LWMtlj7WC0V2gJIrvoxBkSApDUWxyOkCAwEAAaMhMB8wHQYDVR0OBBYE",
+        "FMfL4Owt4dhAwUApAiUclxOHGeUcMA0GCSqGSIb3DQEBCwUAA4IBAQA3xUrvKeQcTMaywcrv8KPP",
+        "WWz5ybb5TxW/5T/W7BtOwFqgEIPQcnauBQ6Pv2tEGWW83lPTan6+boDTTtzASKn9oO0P+dqIH6iw",
+        "ARGw/beScRk3xYpnhUsuMb/RDU5IhQYksD/95Ep9Kx3bDMFjFw7ShE0teHq/GAbymUj5vJQfEKZl",
+        "9G+UByYkvoSoFFjQKK+T2JUVpmernGqVkDZ35oRSktgz0xesZkiKkc0iczAmgBY2w95bxrK4rfA5",
+        "S6PFTRF06pZG55r+bcQAhZXEMzbchHh7WaxqEev97s7JlqyLl3VoIC7UBJcCasJLNeGE551r0R0/",
+        "noRTsMSbQ3Eex5Kt",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "        </KeyDescriptor>",
+        "        <KeyDescriptor use=\"encryption\">",
+        "            <ds:KeyInfo>",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIDRzCCAi+gAwIBAgIEHYaG7jANBgkqhkiG9w0BAQsFADBUMQswCQYDVQQGEwJVSzEQMA4GA1UE",
+        "CBMHQnJpc3RvbDEQMA4GA1UEBxMHQnJpc3RvbDESMBAGA1UEChMJRm9yZ2VSb2NrMQ0wCwYDVQQD",
+        "EwR0ZXN0MB4XDTIxMDMwNjAyMTgzNloXDTMxMDMwNDAyMTgzNlowVDELMAkGA1UEBhMCVUsxEDAO",
+        "BgNVBAgTB0JyaXN0b2wxEDAOBgNVBAcTB0JyaXN0b2wxEjAQBgNVBAoTCUZvcmdlUm9jazENMAsG",
+        "A1UEAxMEdGVzdDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJXDj9VJdnw0X/g2NS8A",
+        "4AEJp5OmaspGrrFkDyZll+niAPNHfE74v9UB1fvH5SJTRiq81HS3sVSwMjjThstkZ81AeMFQeGaB",
+        "Y16Dilkvi2vhIqoxSTjTs11lo5hSfMPOSPmRbH3jJ3Ta1FyywLKWsfM8lmhw+H17/jrViZxghPVt",
+        "KqIaTz+VainC45bgxnZZ/eJSfyPoYTHf+AQRMKEeAxolvOOhwk6xoo3eRMLPhJm1LnwsfYJxJTbE",
+        "aPwlYHkzmG3VF/X3dCRuXvgjA+whD/e0qSfjrUe1r5X/x0NSygE716IKip3iBuNxZR4s8NrF+N6V",
+        "H44aZEE6nxdqh5BOPU0CAwEAAaMhMB8wHQYDVR0OBBYEFPY8mXz+eNBNDNOfShi1X3RNHXqUMA0G",
+        "CSqGSIb3DQEBCwUAA4IBAQBK9OIz9XW+PX8A29PKSUgRJbDPqIWyCilnKyV00Rpxe40KhQqUV8ur",
+        "PioiVxz+YIgf+6VtNhF6ClUX4pDOT48QxnSqX5Qy3Xm/+Sfsm6Sa4EPkLaZYspqoySAHv9FcdLWJ",
+        "u7VvWbDw9oDWG2fZCatNXFzhLWC2EI+vF5tmKDatJLbRHGqQ1jQQpVlYsHcCvaJUThO+jA8X8Yq6",
+        "UqYxD2Z+RV/WboIBbx21sS1HQTeR3tUhz4y4+FYr2c4o2VPrrzQ2NmUN/I5iMxWIGOgHm5/2ZAhl",
+        "J/Ap7YiDLr8eMtidvAdXmN9Sg7iTNVi6ylhqanZh56MKWXDKD2BxLXiQgJge",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "            <EncryptionMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p\">",
+        "                <ds:DigestMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#sha256\"/>",
+        "            </EncryptionMethod>",
+        "            <EncryptionMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#aes128-cbc\">",
+        "                <xenc:KeySize>128</xenc:KeySize>",
+        "            </EncryptionMethod>",
+        "        </KeyDescriptor>",
+        "        <ArtifactResolutionService index=\"0\" Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/ArtifactResolver/metaAlias/alpha/IDPAzure\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://idc.scheuber.io/am/IDPSloRedirect/metaAlias/alpha/IDPAzure\" ResponseLocation=\"https://idc.scheuber.io/am/IDPSloRedirect/metaAlias/alpha/IDPAzure\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://idc.scheuber.io/am/IDPSloPOST/metaAlias/alpha/IDPAzure\" ResponseLocation=\"https://idc.scheuber.io/am/IDPSloPOST/metaAlias/alpha/IDPAzure\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/IDPSloSoap/metaAlias/alpha/IDPAzure\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://idc.scheuber.io/am/IDPMniRedirect/metaAlias/alpha/IDPAzure\" ResponseLocation=\"https://idc.scheuber.io/am/IDPMniRedirect/metaAlias/alpha/IDPAzure\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://idc.scheuber.io/am/IDPMniPOST/metaAlias/alpha/IDPAzure\" ResponseLocation=\"https://idc.scheuber.io/am/IDPMniPOST/metaAlias/alpha/IDPAzure\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/IDPMniSoap/metaAlias/alpha/IDPAzure\"/>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:WindowsDomainQualifiedName</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:kerberos</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName</NameIDFormat>",
+        "        <SingleSignOnService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://idc.scheuber.io/am/SSORedirect/metaAlias/alpha/IDPAzure\"/>",
+        "        <SingleSignOnService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://idc.scheuber.io/am/SSOPOST/metaAlias/alpha/IDPAzure\"/>",
+        "        <SingleSignOnService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/SSOSoap/metaAlias/alpha/IDPAzure\"/>",
+        "        <NameIDMappingService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/NIMSoap/metaAlias/alpha/IDPAzure\"/>",
+        "        <AssertionIDRequestService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/AIDReqSoap/IDPRole/metaAlias/alpha/IDPAzure\"/>",
+        "        <AssertionIDRequestService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:URI\" Location=\"https://idc.scheuber.io/am/AIDReqUri/IDPRole/metaAlias/alpha/IDPAzure\"/>",
+        "    </IDPSSODescriptor>",
+        "</EntityDescriptor>",
+        "",
+        ""
+      ],
+      "U1BBenVyZQ": [
+        "<?xml version=\"1.0\" encoding=\"UTF-8\" standalone=\"yes\"?>",
+        "<EntityDescriptor entityID=\"SPAzure\" xmlns=\"urn:oasis:names:tc:SAML:2.0:metadata\" xmlns:query=\"urn:oasis:names:tc:SAML:metadata:ext:query\" xmlns:mdattr=\"urn:oasis:names:tc:SAML:metadata:attribute\" xmlns:saml=\"urn:oasis:names:tc:SAML:2.0:assertion\" xmlns:xenc=\"http://www.w3.org/2001/04/xmlenc#\" xmlns:xenc11=\"http://www.w3.org/2009/xmlenc11#\" xmlns:alg=\"urn:oasis:names:tc:SAML:metadata:algsupport\" xmlns:x509qry=\"urn:oasis:names:tc:SAML:metadata:X509:query\" xmlns:ds=\"http://www.w3.org/2000/09/xmldsig#\">",
+        "    <SPSSODescriptor protocolSupportEnumeration=\"urn:oasis:names:tc:SAML:2.0:protocol\">",
+        "        <KeyDescriptor use=\"signing\">",
+        "            <ds:KeyInfo>",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIDXzCCAkegAwIBAgIEXw0sqjANBgkqhkiG9w0BAQsFADBgMQswCQYDVQQGEwJVSzEQMA4GA1UE",
+        "CBMHQnJpc3RvbDEQMA4GA1UEBxMHQnJpc3RvbDESMBAGA1UEChMJRm9yZ2VSb2NrMRkwFwYDVQQD",
+        "ExByc2Fqd3RzaWduaW5na2V5MB4XDTIxMDMwNjAyMTgzNVoXDTMxMDMwNDAyMTgzNVowYDELMAkG",
+        "A1UEBhMCVUsxEDAOBgNVBAgTB0JyaXN0b2wxEDAOBgNVBAcTB0JyaXN0b2wxEjAQBgNVBAoTCUZv",
+        "cmdlUm9jazEZMBcGA1UEAxMQcnNhand0c2lnbmluZ2tleTCCASIwDQYJKoZIhvcNAQEBBQADggEP",
+        "ADCCAQoCggEBAI7DfQgOfXacEXp9EUBbH4PosMK36VIeZDO/gllKmJYnOsa+7FPHMJi7OETsF7sF",
+        "FkiL63+3KiqBIk1b9cIp6SWnp7Z2Hvz+WwgF6o0ZhRWbpF1FyLHZWKB2H30BdY6I3keE2xnvOsmq",
+        "X9pyTdap52WatS06GMAzpisMEZsremV49vc5zuVS//QWSmv6r0S9UNfgW1iICKfqxeYibAND2kgc",
+        "2+0I9QTabH59601aGm2bgTr+EOVtbQUEvblz7/l6b4Q4y8o+BmwXk+olPKgBruPa0XOXBpCa7b/d",
+        "SfLI7z2XHyMzqNG9IGg0LWMtlj7WC0V2gJIrvoxBkSApDUWxyOkCAwEAAaMhMB8wHQYDVR0OBBYE",
+        "FMfL4Owt4dhAwUApAiUclxOHGeUcMA0GCSqGSIb3DQEBCwUAA4IBAQA3xUrvKeQcTMaywcrv8KPP",
+        "WWz5ybb5TxW/5T/W7BtOwFqgEIPQcnauBQ6Pv2tEGWW83lPTan6+boDTTtzASKn9oO0P+dqIH6iw",
+        "ARGw/beScRk3xYpnhUsuMb/RDU5IhQYksD/95Ep9Kx3bDMFjFw7ShE0teHq/GAbymUj5vJQfEKZl",
+        "9G+UByYkvoSoFFjQKK+T2JUVpmernGqVkDZ35oRSktgz0xesZkiKkc0iczAmgBY2w95bxrK4rfA5",
+        "S6PFTRF06pZG55r+bcQAhZXEMzbchHh7WaxqEev97s7JlqyLl3VoIC7UBJcCasJLNeGE551r0R0/",
+        "noRTsMSbQ3Eex5Kt",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "        </KeyDescriptor>",
+        "        <KeyDescriptor use=\"encryption\">",
+        "            <ds:KeyInfo>",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIDRzCCAi+gAwIBAgIEHYaG7jANBgkqhkiG9w0BAQsFADBUMQswCQYDVQQGEwJVSzEQMA4GA1UE",
+        "CBMHQnJpc3RvbDEQMA4GA1UEBxMHQnJpc3RvbDESMBAGA1UEChMJRm9yZ2VSb2NrMQ0wCwYDVQQD",
+        "EwR0ZXN0MB4XDTIxMDMwNjAyMTgzNloXDTMxMDMwNDAyMTgzNlowVDELMAkGA1UEBhMCVUsxEDAO",
+        "BgNVBAgTB0JyaXN0b2wxEDAOBgNVBAcTB0JyaXN0b2wxEjAQBgNVBAoTCUZvcmdlUm9jazENMAsG",
+        "A1UEAxMEdGVzdDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJXDj9VJdnw0X/g2NS8A",
+        "4AEJp5OmaspGrrFkDyZll+niAPNHfE74v9UB1fvH5SJTRiq81HS3sVSwMjjThstkZ81AeMFQeGaB",
+        "Y16Dilkvi2vhIqoxSTjTs11lo5hSfMPOSPmRbH3jJ3Ta1FyywLKWsfM8lmhw+H17/jrViZxghPVt",
+        "KqIaTz+VainC45bgxnZZ/eJSfyPoYTHf+AQRMKEeAxolvOOhwk6xoo3eRMLPhJm1LnwsfYJxJTbE",
+        "aPwlYHkzmG3VF/X3dCRuXvgjA+whD/e0qSfjrUe1r5X/x0NSygE716IKip3iBuNxZR4s8NrF+N6V",
+        "H44aZEE6nxdqh5BOPU0CAwEAAaMhMB8wHQYDVR0OBBYEFPY8mXz+eNBNDNOfShi1X3RNHXqUMA0G",
+        "CSqGSIb3DQEBCwUAA4IBAQBK9OIz9XW+PX8A29PKSUgRJbDPqIWyCilnKyV00Rpxe40KhQqUV8ur",
+        "PioiVxz+YIgf+6VtNhF6ClUX4pDOT48QxnSqX5Qy3Xm/+Sfsm6Sa4EPkLaZYspqoySAHv9FcdLWJ",
+        "u7VvWbDw9oDWG2fZCatNXFzhLWC2EI+vF5tmKDatJLbRHGqQ1jQQpVlYsHcCvaJUThO+jA8X8Yq6",
+        "UqYxD2Z+RV/WboIBbx21sS1HQTeR3tUhz4y4+FYr2c4o2VPrrzQ2NmUN/I5iMxWIGOgHm5/2ZAhl",
+        "J/Ap7YiDLr8eMtidvAdXmN9Sg7iTNVi6ylhqanZh56MKWXDKD2BxLXiQgJge",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "            <EncryptionMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p\">",
+        "                <ds:DigestMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#sha256\"/>",
+        "            </EncryptionMethod>",
+        "            <EncryptionMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#aes128-cbc\">",
+        "                <xenc:KeySize>128</xenc:KeySize>",
+        "            </EncryptionMethod>",
+        "        </KeyDescriptor>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://idc.scheuber.io/am/SPSloRedirect/metaAlias/alpha/SPAzure\" ResponseLocation=\"https://idc.scheuber.io/am/SPSloRedirect/metaAlias/alpha/SPAzure\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://idc.scheuber.io/am/SPSloPOST/metaAlias/alpha/SPAzure\" ResponseLocation=\"https://idc.scheuber.io/am/SPSloPOST/metaAlias/alpha/SPAzure\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/SPSloSoap/metaAlias/alpha/SPAzure\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://idc.scheuber.io/am/SPMniRedirect/metaAlias/alpha/SPAzure\" ResponseLocation=\"https://idc.scheuber.io/am/SPMniRedirect/metaAlias/alpha/SPAzure\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://idc.scheuber.io/am/SPMniPOST/metaAlias/alpha/SPAzure\" ResponseLocation=\"https://idc.scheuber.io/am/SPMniPOST/metaAlias/alpha/SPAzure\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/SPMniSoap/metaAlias/alpha/SPAzure\" ResponseLocation=\"https://idc.scheuber.io/am/SPMniSoap/metaAlias/alpha/SPAzure\"/>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:WindowsDomainQualifiedName</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:kerberos</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName</NameIDFormat>",
+        "        <AssertionConsumerService index=\"0\" isDefault=\"true\" Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact\" Location=\"https://idc.scheuber.io/am/Consumer/metaAlias/alpha/SPAzure\"/>",
+        "        <AssertionConsumerService index=\"1\" isDefault=\"false\" Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://idc.scheuber.io/am/Consumer/metaAlias/alpha/SPAzure\"/>",
+        "        <AssertionConsumerService index=\"2\" isDefault=\"false\" Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:PAOS\" Location=\"https://idc.scheuber.io/am/Consumer/ECP/metaAlias/alpha/SPAzure\"/>",
+        "    </SPSSODescriptor>",
+        "</EntityDescriptor>",
+        "",
+        ""
+      ],
+      "aHR0cHM6Ly9zdHMud2luZG93cy5uZXQvNzExZmZhOWMtNTk3Mi00NzEzLWFjZTMtNjg4Yzk3MzI2MTRhLw": [
+        "<?xml version=\"1.0\" encoding=\"UTF-8\" standalone=\"yes\"?>",
+        "<EntityDescriptor entityID=\"https://sts.windows.net/711ffa9c-5972-4713-ace3-688c9732614a/\" ID=\"_e5f839b8-1482-40ae-9261-b6eb35465a16\" xmlns=\"urn:oasis:names:tc:SAML:2.0:metadata\" xmlns:query=\"urn:oasis:names:tc:SAML:metadata:ext:query\" xmlns:mdattr=\"urn:oasis:names:tc:SAML:metadata:attribute\" xmlns:saml=\"urn:oasis:names:tc:SAML:2.0:assertion\" xmlns:xenc=\"http://www.w3.org/2001/04/xmlenc#\" xmlns:xenc11=\"http://www.w3.org/2009/xmlenc11#\" xmlns:alg=\"urn:oasis:names:tc:SAML:metadata:algsupport\" xmlns:x509qry=\"urn:oasis:names:tc:SAML:metadata:X509:query\" xmlns:ds=\"http://www.w3.org/2000/09/xmldsig#\">",
+        "    <IDPSSODescriptor protocolSupportEnumeration=\"urn:oasis:names:tc:SAML:2.0:protocol\">",
+        "        <KeyDescriptor use=\"signing\">",
+        "            <ds:KeyInfo>",
+        "                ",
+        "                ",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIC8DCCAdigAwIBAgIQZzae6CymcZhG5gxIgB7mMDANBgkqhkiG9w0BAQsFADA0MTIwMAYDVQQD",
+        "EylNaWNyb3NvZnQgQXp1cmUgRmVkZXJhdGVkIFNTTyBDZXJ0aWZpY2F0ZTAeFw0yMTAzMzEyMDI0",
+        "MTdaFw0yNDAzMzEyMDI0MTdaMDQxMjAwBgNVBAMTKU1pY3Jvc29mdCBBenVyZSBGZWRlcmF0ZWQg",
+        "U1NPIENlcnRpZmljYXRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv62V9U2Wi8gr",
+        "arSBp7s4Bupke9vaXsNOgNZ8Vn/i0mo6Jn0E1HmJ6uIy+QeahQDtxFQyoEW1LeLGBeVwvUvOfSwf",
+        "wPBEHLw9g3F84IdgfIWtezj87BHh3ezwb0r/0Eny3xHcS02wQsIFRIhn7ltCaMFrTja18gBapuRl",
+        "36Ujfod7W1uL1HJTsw8auKXYEhutbeQYpdU6qcPaksJd1r16q+Jc78MHptKMWSNI1OnB9jK8hr/3",
+        "aug+LSeuJScaJQZDo/qKDmoIC6KT6CgfzUy33I/gjU6RjVcwNw4XFpk5ad13HXTtfCLtPtMxGYuk",
+        "cOxX3M80EJMLFr2sJO0vJbA8aQIDAQABMA0GCSqGSIb3DQEBCwUAA4IBAQB8GmsA4N5KDQ79v+/1",
+        "zVFq8domQYZm8wEAIHn4+T02IluDa9Ty/EqgFzvqAZUILQneFrGCh9uIub/Z3NtkIgs2gbAduxdn",
+        "hzdwhNRNivks4P0CO+9Q1iK/xOsmWo12xsyB4lyAv7HsF+COIPFGhRfzsCxVFKfU8x2r+bb8kWLM",
+        "YpA2NDlz+MTXQEWhFtCLwQRjHlD6C5+yzqoAFBO7RR28mztTF0nVbKj7N+Ri5VLEKJospkwUDtIH",
+        "dcp2bSVwhziAIn05yiw6AVIZnje7cN+kJdCIDgqQ+Ebb96C/Y0JmYvz6sJVP0/u5oR5PrsQqBrw4",
+        "OzVWNFaXuTcN3UicN01V",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "        </KeyDescriptor>",
+        "        <KeyDescriptor use=\"signing\">",
+        "            <ds:KeyInfo>",
+        "                ",
+        "                ",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIC8DCCAdigAwIBAgIQfU4A0Hnj17dI0GSzvUwMZTANBgkqhkiG9w0BAQsFADA0MTIwMAYDVQQD",
+        "EylNaWNyb3NvZnQgQXp1cmUgRmVkZXJhdGVkIFNTTyBDZXJ0aWZpY2F0ZTAeFw0yMTA2MDYwMTQy",
+        "MzBaFw0yNDA2MDYwMTQyMzBaMDQxMjAwBgNVBAMTKU1pY3Jvc29mdCBBenVyZSBGZWRlcmF0ZWQg",
+        "U1NPIENlcnRpZmljYXRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+fFmS+eVDho",
+        "FhlYoY1vRkJIblLct3ZT/sT5AmIoCEGxXBeiSCwnSCveXEfrqEHmjlT5qni5spO+OmX7GrLeytHk",
+        "hl3O6XiXyVBlvyTSFd/bLHR2DqdxbUxUs2E7WfwQyq9Ob9i3++4fRIPFw+JcZ99ouZasHn2BJvWh",
+        "liT7yRtYhvwboc8BwWveL70ZJqsCJnlOKQVIccCdNbQe6HleePXgFB4pRge46zmqKVeEpLbBRqgj",
+        "Yf7EkhBJjx0WY2zMW7DLHDCZEY6VS2Kf9gJpGntNSLe0gXydBFtaFPgyaKIVswZ5hY1oRDPHEXEJ",
+        "+a5TVRGLeTlyK0v9Y+c8d3XdoQIDAQABMA0GCSqGSIb3DQEBCwUAA4IBAQBZ5lcYpe13quossxB7",
+        "L2Y1E7hpy7AZgWr/OGYi/tUh1pJ4++3uZvHJLtTfXc7V+Y5EG6LRq9HZyF0hSvubhYkDXlwYbF7U",
+        "/osQjTe1tffPWO3bwzcrBVz7ytvb7DyvikI3C0f3LaCgEwxwYCD33IowNQS/IJA7W/kiFb/7q/Qu",
+        "7T/gDL1RjYdm9WmYW3RNn0Kh1VDBiCfY739xpCwdH11OUQfVc+9Z2KSSQY7EAlVgwpq+UiVdOqY9",
+        "m4cqul7uvjiSTgG0h5RW9xi3a6Lilk1TxsQUu4tRnGsDCAFgkgLN5rNnlQULuahzruoXWqe4g6pn",
+        "Ritpy6bwva8piGPKhVi/",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "        </KeyDescriptor>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://login.microsoftonline.com/711ffa9c-5972-4713-ace3-688c9732614a/saml2\"/>",
+        "        <SingleSignOnService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://login.microsoftonline.com/711ffa9c-5972-4713-ace3-688c9732614a/saml2\"/>",
+        "        <SingleSignOnService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://login.microsoftonline.com/711ffa9c-5972-4713-ace3-688c9732614a/saml2\"/>",
+        "    </IDPSSODescriptor>",
+        "</EntityDescriptor>",
+        "",
+        ""
+      ],
+      "aWRw": [
+        "<?xml version=\"1.0\" encoding=\"UTF-8\" standalone=\"yes\"?>",
+        "<EntityDescriptor entityID=\"idp\" xmlns=\"urn:oasis:names:tc:SAML:2.0:metadata\" xmlns:query=\"urn:oasis:names:tc:SAML:metadata:ext:query\" xmlns:mdattr=\"urn:oasis:names:tc:SAML:metadata:attribute\" xmlns:saml=\"urn:oasis:names:tc:SAML:2.0:assertion\" xmlns:xenc=\"http://www.w3.org/2001/04/xmlenc#\" xmlns:xenc11=\"http://www.w3.org/2009/xmlenc11#\" xmlns:alg=\"urn:oasis:names:tc:SAML:metadata:algsupport\" xmlns:x509qry=\"urn:oasis:names:tc:SAML:metadata:X509:query\" xmlns:ds=\"http://www.w3.org/2000/09/xmldsig#\">",
+        "    <IDPSSODescriptor WantAuthnRequestsSigned=\"false\" protocolSupportEnumeration=\"urn:oasis:names:tc:SAML:2.0:protocol\">",
+        "        <KeyDescriptor use=\"signing\">",
+        "            <ds:KeyInfo>",
+        "                ",
+        "                ",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIDXzCCAkegAwIBAgIEAxJ36DANBgkqhkiG9w0BAQsFADBgMQswCQYDVQQGEwJVSzEQMA4GA1UE",
+        "CBMHQnJpc3RvbDEQMA4GA1UEBxMHQnJpc3RvbDESMBAGA1UEChMJRm9yZ2VSb2NrMRkwFwYDVQQD",
+        "ExByc2Fqd3RzaWduaW5na2V5MB4XDTIyMDcwODIyNDAyMloXDTMyMDcwNTIyNDAyMlowYDELMAkG",
+        "A1UEBhMCVUsxEDAOBgNVBAgTB0JyaXN0b2wxEDAOBgNVBAcTB0JyaXN0b2wxEjAQBgNVBAoTCUZv",
+        "cmdlUm9jazEZMBcGA1UEAxMQcnNhand0c2lnbmluZ2tleTCCASIwDQYJKoZIhvcNAQEBBQADggEP",
+        "ADCCAQoCggEBAKSsGxtvBW0YxWTZ+lWGoSAOMgFI6dkUIZ+6NJ7SWp5nO5bOBVAd6/c9xZvhSXkF",
+        "Gz3iL0EI9WLaIf6xKsHlxUz0exFE0jzb7EMDyYD/kHNDBM5a+rMEo+f/YjP5ADjkzNy6Zt9Ll0Uq",
+        "yO+LHLcXARE0ts2/2XckmZdSwkXuQdN1yN4lFif5Kj3cuqRHsqfwchxuKiV9BQHq8Jx1ACYcpbkV",
+        "VkDvC6awk61He9CgwJHbNKTdqU3sKGiZWz8Mz7TAvM2I/LLfsdSZXXLnA7C5EOPVVJ/RLs7sJuVm",
+        "M0KUQOjf3TNJAjBULVDaCtmcANMnZCvXyuI4EvfuW/iuqGCqG9ECAwEAAaMhMB8wHQYDVR0OBBYE",
+        "FAxLR/y+kv5fcM3bLHczhhKgPjABMA0GCSqGSIb3DQEBCwUAA4IBAQAHCEpuu9ThpTOLoJPnzQts",
+        "UK6G7REJh8w1doL4qTeq9oylnWeidvSLNhuowXZS0LyA5YXEm6tyv2NiHDv3DtoP8kBsCOLPVGhE",
+        "yoQy01XZYnngGzzqwFDnKJgiV3hNwqM/bGhW19N0AiVLc46iidTJ4+ekTwLxdcgwOob3+JNnio10",
+        "XH+f2ncH09Lkqv+7dnUGo/NjMHCcEWJ/2PB/gjbGKAi+m43mRgJz2+BeOOEzeSsDe/n9LYl7/drO",
+        "Tf0T+k7dwlE+p0vLID6I+tDI18Bdl2TUUaFCT/D71LvE6qZhrwETJ60+IMyaFWBmZte4VQjhv8f+",
+        "EdVaivDEwSH2Enxz",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "        </KeyDescriptor>",
+        "        <KeyDescriptor use=\"encryption\">",
+        "            <ds:KeyInfo>",
+        "                ",
+        "                ",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIDRzCCAi+gAwIBAgIEB86zjDANBgkqhkiG9w0BAQsFADBUMQswCQYDVQQGEwJVSzEQMA4GA1UE",
+        "CBMHQnJpc3RvbDEQMA4GA1UEBxMHQnJpc3RvbDESMBAGA1UEChMJRm9yZ2VSb2NrMQ0wCwYDVQQD",
+        "EwR0ZXN0MB4XDTIyMDcwODIyNDAyM1oXDTMyMDcwNTIyNDAyM1owVDELMAkGA1UEBhMCVUsxEDAO",
+        "BgNVBAgTB0JyaXN0b2wxEDAOBgNVBAcTB0JyaXN0b2wxEjAQBgNVBAoTCUZvcmdlUm9jazENMAsG",
+        "A1UEAxMEdGVzdDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAIWctGA/i844aSlLy6Sv",
+        "g/cHAinfbSlZKSXVzcbFivYC6g9RAUd5L9hrXlT302CAq+prMavGPqPj25g02ADGelVb6XB3CSi4",
+        "zN6CxXgWlNXj1NrMrANvpHwPH6n5UYOTUFCOoi4shzIwwQlNHFr5sTxOqEvZNwKSxe45YvhizwwW",
+        "S6TPwPNlBP1nfXApI6xz7xzti9m0nAMaeqmGCjWFz9O3Zec46ep5nS/ffKDYKPBo7SRDyqDg3p7g",
+        "pAKt0+4XEUiCHALb9qmnhzFWE6r5DkiKDksOHxnMj6vjJ5AvEpyV1gwDKu7cf39+rgldGd5VWEve",
+        "J1Xy+A3mFdW+ZOOviB8CAwEAAaMhMB8wHQYDVR0OBBYEFOubn2CikmtO19J8/41QvHuSGnFEMA0G",
+        "CSqGSIb3DQEBCwUAA4IBAQCAIIxDwqJqIIL1yBdip/wTPofVkwG533a9QyPoFTDRmjdA2oH2Tf6L",
+        "ebsc8DiGocifXLJ3e3dpREWO8dFtdGfwFr0iAeu9rpi15OY62mbjOtEHXnuoesPvaNe0jPOOEcAM",
+        "dxRjo1E5ZuZPeTzH/trrBEzZ/hhlqPH326cqx5Id4XDj5WpVGPystWbUCS7v1flZHLCMCGjjFxuq",
+        "2cthH1+oRbcZ2UABuPn9twbdC3tPhIYiwrcr4bN9+ATfJAeMgYlW13tLaKjFoBuqqxHjGpdKJFLM",
+        "6ci4o71BahFS/8a3lWrFURXjtkoKZ8DZlMgK9GD8wk6O/2YGbihuYQobk2cD",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "            <EncryptionMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p\">",
+        "                ",
+        "                ",
+        "                <ds:DigestMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#sha256\"/>",
+        "            </EncryptionMethod>",
+        "            <EncryptionMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#aes128-cbc\">",
+        "                ",
+        "                ",
+        "                <xenc:KeySize>128</xenc:KeySize>",
+        "            </EncryptionMethod>",
+        "        </KeyDescriptor>",
+        "        <ArtifactResolutionService index=\"0\" Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://openam-admin-fed.forgeblocks.com/am/ArtifactResolver/metaAlias/alpha/idp\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://openam-admin-fed.forgeblocks.com/am/IDPSloRedirect/metaAlias/alpha/idp\" ResponseLocation=\"https://openam-admin-fed.forgeblocks.com/am/IDPSloRedirect/metaAlias/alpha/idp\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://openam-admin-fed.forgeblocks.com/am/IDPSloPOST/metaAlias/alpha/idp\" ResponseLocation=\"https://openam-admin-fed.forgeblocks.com/am/IDPSloPOST/metaAlias/alpha/idp\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://openam-admin-fed.forgeblocks.com/am/IDPSloSoap/metaAlias/alpha/idp\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://openam-admin-fed.forgeblocks.com/am/IDPMniPOST/metaAlias/alpha/idp\" ResponseLocation=\"https://openam-admin-fed.forgeblocks.com/am/IDPMniPOST/metaAlias/alpha/idp\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://openam-admin-fed.forgeblocks.com/am/IDPMniRedirect/metaAlias/alpha/idp\" ResponseLocation=\"https://openam-admin-fed.forgeblocks.com/am/IDPMniRedirect/metaAlias/alpha/idp\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://openam-admin-fed.forgeblocks.com/am/IDPMniSoap/metaAlias/alpha/idp\"/>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</NameIDFormat>",
+        "        <SingleSignOnService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://openam-admin-fed.forgeblocks.com/am/SSOPOST/metaAlias/alpha/idp\"/>",
+        "        <SingleSignOnService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://openam-admin-fed.forgeblocks.com/am/SSORedirect/metaAlias/alpha/idp\"/>",
+        "        <SingleSignOnService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://openam-admin-fed.forgeblocks.com/am/SSOSoap/metaAlias/alpha/idp\"/>",
+        "        <NameIDMappingService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://openam-admin-fed.forgeblocks.com/am/NIMSoap/metaAlias/alpha/idp\"/>",
+        "        <AssertionIDRequestService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://openam-admin-fed.forgeblocks.com/am/AIDReqSoap/IDPRole/metaAlias/alpha/idp\"/>",
+        "        <AssertionIDRequestService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:URI\" Location=\"https://openam-admin-fed.forgeblocks.com/am/AIDReqUri/IDPRole/metaAlias/alpha/idp\"/>",
+        "    </IDPSSODescriptor>",
+        "</EntityDescriptor>",
+        "",
+        ""
+      ],
+      "aHR0cHM6Ly9pZGMuc2NoZXViZXIuaW8vYW0vc2FtbDIvSURQRmVkbGV0": [
+        "<?xml version=\"1.0\" encoding=\"UTF-8\" standalone=\"yes\"?>",
+        "<EntityDescriptor entityID=\"https://idc.scheuber.io/am/saml2/IDPFedlet\" xmlns=\"urn:oasis:names:tc:SAML:2.0:metadata\" xmlns:query=\"urn:oasis:names:tc:SAML:metadata:ext:query\" xmlns:mdattr=\"urn:oasis:names:tc:SAML:metadata:attribute\" xmlns:saml=\"urn:oasis:names:tc:SAML:2.0:assertion\" xmlns:xenc=\"http://www.w3.org/2001/04/xmlenc#\" xmlns:xenc11=\"http://www.w3.org/2009/xmlenc11#\" xmlns:alg=\"urn:oasis:names:tc:SAML:metadata:algsupport\" xmlns:x509qry=\"urn:oasis:names:tc:SAML:metadata:X509:query\" xmlns:ds=\"http://www.w3.org/2000/09/xmldsig#\">",
+        "    <IDPSSODescriptor protocolSupportEnumeration=\"urn:oasis:names:tc:SAML:2.0:protocol\">",
+        "        <KeyDescriptor use=\"signing\">",
+        "            <ds:KeyInfo>",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIDXzCCAkegAwIBAgIEXw0sqjANBgkqhkiG9w0BAQsFADBgMQswCQYDVQQGEwJVSzEQMA4GA1UE",
+        "CBMHQnJpc3RvbDEQMA4GA1UEBxMHQnJpc3RvbDESMBAGA1UEChMJRm9yZ2VSb2NrMRkwFwYDVQQD",
+        "ExByc2Fqd3RzaWduaW5na2V5MB4XDTIxMDMwNjAyMTgzNVoXDTMxMDMwNDAyMTgzNVowYDELMAkG",
+        "A1UEBhMCVUsxEDAOBgNVBAgTB0JyaXN0b2wxEDAOBgNVBAcTB0JyaXN0b2wxEjAQBgNVBAoTCUZv",
+        "cmdlUm9jazEZMBcGA1UEAxMQcnNhand0c2lnbmluZ2tleTCCASIwDQYJKoZIhvcNAQEBBQADggEP",
+        "ADCCAQoCggEBAI7DfQgOfXacEXp9EUBbH4PosMK36VIeZDO/gllKmJYnOsa+7FPHMJi7OETsF7sF",
+        "FkiL63+3KiqBIk1b9cIp6SWnp7Z2Hvz+WwgF6o0ZhRWbpF1FyLHZWKB2H30BdY6I3keE2xnvOsmq",
+        "X9pyTdap52WatS06GMAzpisMEZsremV49vc5zuVS//QWSmv6r0S9UNfgW1iICKfqxeYibAND2kgc",
+        "2+0I9QTabH59601aGm2bgTr+EOVtbQUEvblz7/l6b4Q4y8o+BmwXk+olPKgBruPa0XOXBpCa7b/d",
+        "SfLI7z2XHyMzqNG9IGg0LWMtlj7WC0V2gJIrvoxBkSApDUWxyOkCAwEAAaMhMB8wHQYDVR0OBBYE",
+        "FMfL4Owt4dhAwUApAiUclxOHGeUcMA0GCSqGSIb3DQEBCwUAA4IBAQA3xUrvKeQcTMaywcrv8KPP",
+        "WWz5ybb5TxW/5T/W7BtOwFqgEIPQcnauBQ6Pv2tEGWW83lPTan6+boDTTtzASKn9oO0P+dqIH6iw",
+        "ARGw/beScRk3xYpnhUsuMb/RDU5IhQYksD/95Ep9Kx3bDMFjFw7ShE0teHq/GAbymUj5vJQfEKZl",
+        "9G+UByYkvoSoFFjQKK+T2JUVpmernGqVkDZ35oRSktgz0xesZkiKkc0iczAmgBY2w95bxrK4rfA5",
+        "S6PFTRF06pZG55r+bcQAhZXEMzbchHh7WaxqEev97s7JlqyLl3VoIC7UBJcCasJLNeGE551r0R0/",
+        "noRTsMSbQ3Eex5Kt",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "        </KeyDescriptor>",
+        "        <KeyDescriptor use=\"encryption\">",
+        "            <ds:KeyInfo>",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIDRzCCAi+gAwIBAgIEHYaG7jANBgkqhkiG9w0BAQsFADBUMQswCQYDVQQGEwJVSzEQMA4GA1UE",
+        "CBMHQnJpc3RvbDEQMA4GA1UEBxMHQnJpc3RvbDESMBAGA1UEChMJRm9yZ2VSb2NrMQ0wCwYDVQQD",
+        "EwR0ZXN0MB4XDTIxMDMwNjAyMTgzNloXDTMxMDMwNDAyMTgzNlowVDELMAkGA1UEBhMCVUsxEDAO",
+        "BgNVBAgTB0JyaXN0b2wxEDAOBgNVBAcTB0JyaXN0b2wxEjAQBgNVBAoTCUZvcmdlUm9jazENMAsG",
+        "A1UEAxMEdGVzdDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJXDj9VJdnw0X/g2NS8A",
+        "4AEJp5OmaspGrrFkDyZll+niAPNHfE74v9UB1fvH5SJTRiq81HS3sVSwMjjThstkZ81AeMFQeGaB",
+        "Y16Dilkvi2vhIqoxSTjTs11lo5hSfMPOSPmRbH3jJ3Ta1FyywLKWsfM8lmhw+H17/jrViZxghPVt",
+        "KqIaTz+VainC45bgxnZZ/eJSfyPoYTHf+AQRMKEeAxolvOOhwk6xoo3eRMLPhJm1LnwsfYJxJTbE",
+        "aPwlYHkzmG3VF/X3dCRuXvgjA+whD/e0qSfjrUe1r5X/x0NSygE716IKip3iBuNxZR4s8NrF+N6V",
+        "H44aZEE6nxdqh5BOPU0CAwEAAaMhMB8wHQYDVR0OBBYEFPY8mXz+eNBNDNOfShi1X3RNHXqUMA0G",
+        "CSqGSIb3DQEBCwUAA4IBAQBK9OIz9XW+PX8A29PKSUgRJbDPqIWyCilnKyV00Rpxe40KhQqUV8ur",
+        "PioiVxz+YIgf+6VtNhF6ClUX4pDOT48QxnSqX5Qy3Xm/+Sfsm6Sa4EPkLaZYspqoySAHv9FcdLWJ",
+        "u7VvWbDw9oDWG2fZCatNXFzhLWC2EI+vF5tmKDatJLbRHGqQ1jQQpVlYsHcCvaJUThO+jA8X8Yq6",
+        "UqYxD2Z+RV/WboIBbx21sS1HQTeR3tUhz4y4+FYr2c4o2VPrrzQ2NmUN/I5iMxWIGOgHm5/2ZAhl",
+        "J/Ap7YiDLr8eMtidvAdXmN9Sg7iTNVi6ylhqanZh56MKWXDKD2BxLXiQgJge",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "            <EncryptionMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p\">",
+        "                <ds:DigestMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#sha256\"/>",
+        "            </EncryptionMethod>",
+        "            <EncryptionMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#aes128-cbc\">",
+        "                <xenc:KeySize>128</xenc:KeySize>",
+        "            </EncryptionMethod>",
+        "        </KeyDescriptor>",
+        "        <ArtifactResolutionService index=\"0\" Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/ArtifactResolver/metaAlias/alpha/IDPFedlet\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://idc.scheuber.io/am/IDPSloRedirect/metaAlias/alpha/IDPFedlet\" ResponseLocation=\"https://idc.scheuber.io/am/IDPSloRedirect/metaAlias/alpha/IDPFedlet\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://idc.scheuber.io/am/IDPSloPOST/metaAlias/alpha/IDPFedlet\" ResponseLocation=\"https://idc.scheuber.io/am/IDPSloPOST/metaAlias/alpha/IDPFedlet\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/IDPSloSoap/metaAlias/alpha/IDPFedlet\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://idc.scheuber.io/am/IDPMniRedirect/metaAlias/alpha/IDPFedlet\" ResponseLocation=\"https://idc.scheuber.io/am/IDPMniRedirect/metaAlias/alpha/IDPFedlet\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://idc.scheuber.io/am/IDPMniPOST/metaAlias/alpha/IDPFedlet\" ResponseLocation=\"https://idc.scheuber.io/am/IDPMniPOST/metaAlias/alpha/IDPFedlet\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/IDPMniSoap/metaAlias/alpha/IDPFedlet\"/>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:WindowsDomainQualifiedName</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:kerberos</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName</NameIDFormat>",
+        "        <SingleSignOnService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://idc.scheuber.io/am/SSORedirect/metaAlias/alpha/IDPFedlet\"/>",
+        "        <SingleSignOnService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://idc.scheuber.io/am/SSOPOST/metaAlias/alpha/IDPFedlet\"/>",
+        "        <SingleSignOnService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/SSOSoap/metaAlias/alpha/IDPFedlet\"/>",
+        "        <NameIDMappingService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/NIMSoap/metaAlias/alpha/IDPFedlet\"/>",
+        "        <AssertionIDRequestService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/AIDReqSoap/IDPRole/metaAlias/alpha/IDPFedlet\"/>",
+        "        <AssertionIDRequestService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:URI\" Location=\"https://idc.scheuber.io/am/AIDReqUri/IDPRole/metaAlias/alpha/IDPFedlet\"/>",
+        "    </IDPSSODescriptor>",
+        "</EntityDescriptor>",
+        "",
+        ""
+      ],
+      "dm9sa2VyRGV2U1A": [
+        "<?xml version=\"1.0\" encoding=\"UTF-8\" standalone=\"yes\"?>",
+        "<EntityDescriptor entityID=\"volkerDevSP\" xmlns=\"urn:oasis:names:tc:SAML:2.0:metadata\" xmlns:query=\"urn:oasis:names:tc:SAML:metadata:ext:query\" xmlns:mdattr=\"urn:oasis:names:tc:SAML:metadata:attribute\" xmlns:saml=\"urn:oasis:names:tc:SAML:2.0:assertion\" xmlns:xenc=\"http://www.w3.org/2001/04/xmlenc#\" xmlns:xenc11=\"http://www.w3.org/2009/xmlenc11#\" xmlns:alg=\"urn:oasis:names:tc:SAML:metadata:algsupport\" xmlns:x509qry=\"urn:oasis:names:tc:SAML:metadata:X509:query\" xmlns:ds=\"http://www.w3.org/2000/09/xmldsig#\">",
+        "    <SPSSODescriptor protocolSupportEnumeration=\"urn:oasis:names:tc:SAML:2.0:protocol\">",
+        "        <KeyDescriptor use=\"signing\">",
+        "            <ds:KeyInfo>",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIDXzCCAkegAwIBAgIEXw0sqjANBgkqhkiG9w0BAQsFADBgMQswCQYDVQQGEwJVSzEQMA4GA1UE",
+        "CBMHQnJpc3RvbDEQMA4GA1UEBxMHQnJpc3RvbDESMBAGA1UEChMJRm9yZ2VSb2NrMRkwFwYDVQQD",
+        "ExByc2Fqd3RzaWduaW5na2V5MB4XDTIxMDMwNjAyMTgzNVoXDTMxMDMwNDAyMTgzNVowYDELMAkG",
+        "A1UEBhMCVUsxEDAOBgNVBAgTB0JyaXN0b2wxEDAOBgNVBAcTB0JyaXN0b2wxEjAQBgNVBAoTCUZv",
+        "cmdlUm9jazEZMBcGA1UEAxMQcnNhand0c2lnbmluZ2tleTCCASIwDQYJKoZIhvcNAQEBBQADggEP",
+        "ADCCAQoCggEBAI7DfQgOfXacEXp9EUBbH4PosMK36VIeZDO/gllKmJYnOsa+7FPHMJi7OETsF7sF",
+        "FkiL63+3KiqBIk1b9cIp6SWnp7Z2Hvz+WwgF6o0ZhRWbpF1FyLHZWKB2H30BdY6I3keE2xnvOsmq",
+        "X9pyTdap52WatS06GMAzpisMEZsremV49vc5zuVS//QWSmv6r0S9UNfgW1iICKfqxeYibAND2kgc",
+        "2+0I9QTabH59601aGm2bgTr+EOVtbQUEvblz7/l6b4Q4y8o+BmwXk+olPKgBruPa0XOXBpCa7b/d",
+        "SfLI7z2XHyMzqNG9IGg0LWMtlj7WC0V2gJIrvoxBkSApDUWxyOkCAwEAAaMhMB8wHQYDVR0OBBYE",
+        "FMfL4Owt4dhAwUApAiUclxOHGeUcMA0GCSqGSIb3DQEBCwUAA4IBAQA3xUrvKeQcTMaywcrv8KPP",
+        "WWz5ybb5TxW/5T/W7BtOwFqgEIPQcnauBQ6Pv2tEGWW83lPTan6+boDTTtzASKn9oO0P+dqIH6iw",
+        "ARGw/beScRk3xYpnhUsuMb/RDU5IhQYksD/95Ep9Kx3bDMFjFw7ShE0teHq/GAbymUj5vJQfEKZl",
+        "9G+UByYkvoSoFFjQKK+T2JUVpmernGqVkDZ35oRSktgz0xesZkiKkc0iczAmgBY2w95bxrK4rfA5",
+        "S6PFTRF06pZG55r+bcQAhZXEMzbchHh7WaxqEev97s7JlqyLl3VoIC7UBJcCasJLNeGE551r0R0/",
+        "noRTsMSbQ3Eex5Kt",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "        </KeyDescriptor>",
+        "        <KeyDescriptor use=\"encryption\">",
+        "            <ds:KeyInfo>",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIDRzCCAi+gAwIBAgIEHYaG7jANBgkqhkiG9w0BAQsFADBUMQswCQYDVQQGEwJVSzEQMA4GA1UE",
+        "CBMHQnJpc3RvbDEQMA4GA1UEBxMHQnJpc3RvbDESMBAGA1UEChMJRm9yZ2VSb2NrMQ0wCwYDVQQD",
+        "EwR0ZXN0MB4XDTIxMDMwNjAyMTgzNloXDTMxMDMwNDAyMTgzNlowVDELMAkGA1UEBhMCVUsxEDAO",
+        "BgNVBAgTB0JyaXN0b2wxEDAOBgNVBAcTB0JyaXN0b2wxEjAQBgNVBAoTCUZvcmdlUm9jazENMAsG",
+        "A1UEAxMEdGVzdDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJXDj9VJdnw0X/g2NS8A",
+        "4AEJp5OmaspGrrFkDyZll+niAPNHfE74v9UB1fvH5SJTRiq81HS3sVSwMjjThstkZ81AeMFQeGaB",
+        "Y16Dilkvi2vhIqoxSTjTs11lo5hSfMPOSPmRbH3jJ3Ta1FyywLKWsfM8lmhw+H17/jrViZxghPVt",
+        "KqIaTz+VainC45bgxnZZ/eJSfyPoYTHf+AQRMKEeAxolvOOhwk6xoo3eRMLPhJm1LnwsfYJxJTbE",
+        "aPwlYHkzmG3VF/X3dCRuXvgjA+whD/e0qSfjrUe1r5X/x0NSygE716IKip3iBuNxZR4s8NrF+N6V",
+        "H44aZEE6nxdqh5BOPU0CAwEAAaMhMB8wHQYDVR0OBBYEFPY8mXz+eNBNDNOfShi1X3RNHXqUMA0G",
+        "CSqGSIb3DQEBCwUAA4IBAQBK9OIz9XW+PX8A29PKSUgRJbDPqIWyCilnKyV00Rpxe40KhQqUV8ur",
+        "PioiVxz+YIgf+6VtNhF6ClUX4pDOT48QxnSqX5Qy3Xm/+Sfsm6Sa4EPkLaZYspqoySAHv9FcdLWJ",
+        "u7VvWbDw9oDWG2fZCatNXFzhLWC2EI+vF5tmKDatJLbRHGqQ1jQQpVlYsHcCvaJUThO+jA8X8Yq6",
+        "UqYxD2Z+RV/WboIBbx21sS1HQTeR3tUhz4y4+FYr2c4o2VPrrzQ2NmUN/I5iMxWIGOgHm5/2ZAhl",
+        "J/Ap7YiDLr8eMtidvAdXmN9Sg7iTNVi6ylhqanZh56MKWXDKD2BxLXiQgJge",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "            <EncryptionMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p\">",
+        "                <ds:DigestMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#sha256\"/>",
+        "            </EncryptionMethod>",
+        "            <EncryptionMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#aes128-cbc\">",
+        "                <xenc:KeySize>128</xenc:KeySize>",
+        "            </EncryptionMethod>",
+        "        </KeyDescriptor>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://openam-volker-dev.forgeblocks.com/am/SPSloRedirect/metaAlias/alpha/volkerDevSP\" ResponseLocation=\"https://openam-volker-dev.forgeblocks.com/am/SPSloRedirect/metaAlias/alpha/volkerDevSP\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://openam-volker-dev.forgeblocks.com/am/SPSloPOST/metaAlias/alpha/volkerDevSP\" ResponseLocation=\"https://openam-volker-dev.forgeblocks.com/am/SPSloPOST/metaAlias/alpha/volkerDevSP\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://openam-volker-dev.forgeblocks.com/am/SPSloSoap/metaAlias/alpha/volkerDevSP\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://openam-volker-dev.forgeblocks.com/am/SPMniPOST/metaAlias/alpha/volkerDevSP\" ResponseLocation=\"https://openam-volker-dev.forgeblocks.com/am/SPMniPOST/metaAlias/alpha/volkerDevSP\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://openam-volker-dev.forgeblocks.com/am/SPMniRedirect/metaAlias/alpha/volkerDevSP\" ResponseLocation=\"https://openam-volker-dev.forgeblocks.com/am/SPMniRedirect/metaAlias/alpha/volkerDevSP\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://openam-volker-dev.forgeblocks.com/am/SPMniSoap/metaAlias/alpha/volkerDevSP\" ResponseLocation=\"https://openam-volker-dev.forgeblocks.com/am/SPMniSoap/metaAlias/alpha/volkerDevSP\"/>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:WindowsDomainQualifiedName</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:kerberos</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName</NameIDFormat>",
+        "        <AssertionConsumerService index=\"1\" isDefault=\"true\" Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://openam-volker-dev.forgeblocks.com/am/Consumer/metaAlias/alpha/volkerDevSP\"/>",
+        "    </SPSSODescriptor>",
+        "</EntityDescriptor>",
+        "",
+        ""
+      ],
+      "aVNQQXp1cmU": [
+        "<?xml version=\"1.0\" encoding=\"UTF-8\" standalone=\"yes\"?>",
+        "<EntityDescriptor entityID=\"iSPAzure\" xmlns=\"urn:oasis:names:tc:SAML:2.0:metadata\" xmlns:query=\"urn:oasis:names:tc:SAML:metadata:ext:query\" xmlns:mdattr=\"urn:oasis:names:tc:SAML:metadata:attribute\" xmlns:saml=\"urn:oasis:names:tc:SAML:2.0:assertion\" xmlns:xenc=\"http://www.w3.org/2001/04/xmlenc#\" xmlns:xenc11=\"http://www.w3.org/2009/xmlenc11#\" xmlns:alg=\"urn:oasis:names:tc:SAML:metadata:algsupport\" xmlns:x509qry=\"urn:oasis:names:tc:SAML:metadata:X509:query\" xmlns:ds=\"http://www.w3.org/2000/09/xmldsig#\">",
+        "    <SPSSODescriptor protocolSupportEnumeration=\"urn:oasis:names:tc:SAML:2.0:protocol\">",
+        "        <KeyDescriptor use=\"signing\">",
+        "            <ds:KeyInfo>",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIDXzCCAkegAwIBAgIEXw0sqjANBgkqhkiG9w0BAQsFADBgMQswCQYDVQQGEwJVSzEQMA4GA1UE",
+        "CBMHQnJpc3RvbDEQMA4GA1UEBxMHQnJpc3RvbDESMBAGA1UEChMJRm9yZ2VSb2NrMRkwFwYDVQQD",
+        "ExByc2Fqd3RzaWduaW5na2V5MB4XDTIxMDMwNjAyMTgzNVoXDTMxMDMwNDAyMTgzNVowYDELMAkG",
+        "A1UEBhMCVUsxEDAOBgNVBAgTB0JyaXN0b2wxEDAOBgNVBAcTB0JyaXN0b2wxEjAQBgNVBAoTCUZv",
+        "cmdlUm9jazEZMBcGA1UEAxMQcnNhand0c2lnbmluZ2tleTCCASIwDQYJKoZIhvcNAQEBBQADggEP",
+        "ADCCAQoCggEBAI7DfQgOfXacEXp9EUBbH4PosMK36VIeZDO/gllKmJYnOsa+7FPHMJi7OETsF7sF",
+        "FkiL63+3KiqBIk1b9cIp6SWnp7Z2Hvz+WwgF6o0ZhRWbpF1FyLHZWKB2H30BdY6I3keE2xnvOsmq",
+        "X9pyTdap52WatS06GMAzpisMEZsremV49vc5zuVS//QWSmv6r0S9UNfgW1iICKfqxeYibAND2kgc",
+        "2+0I9QTabH59601aGm2bgTr+EOVtbQUEvblz7/l6b4Q4y8o+BmwXk+olPKgBruPa0XOXBpCa7b/d",
+        "SfLI7z2XHyMzqNG9IGg0LWMtlj7WC0V2gJIrvoxBkSApDUWxyOkCAwEAAaMhMB8wHQYDVR0OBBYE",
+        "FMfL4Owt4dhAwUApAiUclxOHGeUcMA0GCSqGSIb3DQEBCwUAA4IBAQA3xUrvKeQcTMaywcrv8KPP",
+        "WWz5ybb5TxW/5T/W7BtOwFqgEIPQcnauBQ6Pv2tEGWW83lPTan6+boDTTtzASKn9oO0P+dqIH6iw",
+        "ARGw/beScRk3xYpnhUsuMb/RDU5IhQYksD/95Ep9Kx3bDMFjFw7ShE0teHq/GAbymUj5vJQfEKZl",
+        "9G+UByYkvoSoFFjQKK+T2JUVpmernGqVkDZ35oRSktgz0xesZkiKkc0iczAmgBY2w95bxrK4rfA5",
+        "S6PFTRF06pZG55r+bcQAhZXEMzbchHh7WaxqEev97s7JlqyLl3VoIC7UBJcCasJLNeGE551r0R0/",
+        "noRTsMSbQ3Eex5Kt",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "        </KeyDescriptor>",
+        "        <KeyDescriptor use=\"encryption\">",
+        "            <ds:KeyInfo>",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIDRzCCAi+gAwIBAgIEHYaG7jANBgkqhkiG9w0BAQsFADBUMQswCQYDVQQGEwJVSzEQMA4GA1UE",
+        "CBMHQnJpc3RvbDEQMA4GA1UEBxMHQnJpc3RvbDESMBAGA1UEChMJRm9yZ2VSb2NrMQ0wCwYDVQQD",
+        "EwR0ZXN0MB4XDTIxMDMwNjAyMTgzNloXDTMxMDMwNDAyMTgzNlowVDELMAkGA1UEBhMCVUsxEDAO",
+        "BgNVBAgTB0JyaXN0b2wxEDAOBgNVBAcTB0JyaXN0b2wxEjAQBgNVBAoTCUZvcmdlUm9jazENMAsG",
+        "A1UEAxMEdGVzdDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJXDj9VJdnw0X/g2NS8A",
+        "4AEJp5OmaspGrrFkDyZll+niAPNHfE74v9UB1fvH5SJTRiq81HS3sVSwMjjThstkZ81AeMFQeGaB",
+        "Y16Dilkvi2vhIqoxSTjTs11lo5hSfMPOSPmRbH3jJ3Ta1FyywLKWsfM8lmhw+H17/jrViZxghPVt",
+        "KqIaTz+VainC45bgxnZZ/eJSfyPoYTHf+AQRMKEeAxolvOOhwk6xoo3eRMLPhJm1LnwsfYJxJTbE",
+        "aPwlYHkzmG3VF/X3dCRuXvgjA+whD/e0qSfjrUe1r5X/x0NSygE716IKip3iBuNxZR4s8NrF+N6V",
+        "H44aZEE6nxdqh5BOPU0CAwEAAaMhMB8wHQYDVR0OBBYEFPY8mXz+eNBNDNOfShi1X3RNHXqUMA0G",
+        "CSqGSIb3DQEBCwUAA4IBAQBK9OIz9XW+PX8A29PKSUgRJbDPqIWyCilnKyV00Rpxe40KhQqUV8ur",
+        "PioiVxz+YIgf+6VtNhF6ClUX4pDOT48QxnSqX5Qy3Xm/+Sfsm6Sa4EPkLaZYspqoySAHv9FcdLWJ",
+        "u7VvWbDw9oDWG2fZCatNXFzhLWC2EI+vF5tmKDatJLbRHGqQ1jQQpVlYsHcCvaJUThO+jA8X8Yq6",
+        "UqYxD2Z+RV/WboIBbx21sS1HQTeR3tUhz4y4+FYr2c4o2VPrrzQ2NmUN/I5iMxWIGOgHm5/2ZAhl",
+        "J/Ap7YiDLr8eMtidvAdXmN9Sg7iTNVi6ylhqanZh56MKWXDKD2BxLXiQgJge",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "            <EncryptionMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p\">",
+        "                <ds:DigestMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#sha256\"/>",
+        "            </EncryptionMethod>",
+        "            <EncryptionMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#aes128-cbc\">",
+        "                <xenc:KeySize>128</xenc:KeySize>",
+        "            </EncryptionMethod>",
+        "        </KeyDescriptor>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://idc.scheuber.io/am/SPSloRedirect/metaAlias/alpha/iSPAzure\" ResponseLocation=\"https://idc.scheuber.io/am/SPSloRedirect/metaAlias/alpha/iSPAzure\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://idc.scheuber.io/am/SPSloPOST/metaAlias/alpha/iSPAzure\" ResponseLocation=\"https://idc.scheuber.io/am/SPSloPOST/metaAlias/alpha/iSPAzure\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/SPSloSoap/metaAlias/alpha/iSPAzure\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://idc.scheuber.io/am/SPMniRedirect/metaAlias/alpha/iSPAzure\" ResponseLocation=\"https://idc.scheuber.io/am/SPMniRedirect/metaAlias/alpha/iSPAzure\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://idc.scheuber.io/am/SPMniPOST/metaAlias/alpha/iSPAzure\" ResponseLocation=\"https://idc.scheuber.io/am/SPMniPOST/metaAlias/alpha/iSPAzure\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/SPMniSoap/metaAlias/alpha/iSPAzure\" ResponseLocation=\"https://idc.scheuber.io/am/SPMniSoap/metaAlias/alpha/iSPAzure\"/>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:WindowsDomainQualifiedName</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:kerberos</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName</NameIDFormat>",
+        "        <AssertionConsumerService index=\"0\" isDefault=\"true\" Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact\" Location=\"https://idc.scheuber.io/am/AuthConsumer/metaAlias/alpha/iSPAzure\"/>",
+        "        <AssertionConsumerService index=\"1\" isDefault=\"false\" Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://idc.scheuber.io/am/AuthConsumer/metaAlias/alpha/iSPAzure\"/>",
+        "        <AssertionConsumerService index=\"2\" isDefault=\"false\" Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:PAOS\" Location=\"https://idc.scheuber.io/am/Consumer/ECP/metaAlias/alpha/iSPAzure\"/>",
+        "    </SPSSODescriptor>",
+        "</EntityDescriptor>",
+        "",
+        ""
+      ],
+      "aHR0cHM6Ly9pZGMuc2NoZXViZXIuaW8vYW0vc2FtbDIvSURQQnJvYWRjb20": [
+        "<?xml version=\"1.0\" encoding=\"UTF-8\" standalone=\"yes\"?>",
+        "<EntityDescriptor entityID=\"https://idc.scheuber.io/am/saml2/IDPBroadcom\" xmlns=\"urn:oasis:names:tc:SAML:2.0:metadata\" xmlns:query=\"urn:oasis:names:tc:SAML:metadata:ext:query\" xmlns:mdattr=\"urn:oasis:names:tc:SAML:metadata:attribute\" xmlns:saml=\"urn:oasis:names:tc:SAML:2.0:assertion\" xmlns:xenc=\"http://www.w3.org/2001/04/xmlenc#\" xmlns:xenc11=\"http://www.w3.org/2009/xmlenc11#\" xmlns:alg=\"urn:oasis:names:tc:SAML:metadata:algsupport\" xmlns:x509qry=\"urn:oasis:names:tc:SAML:metadata:X509:query\" xmlns:ds=\"http://www.w3.org/2000/09/xmldsig#\">",
+        "    <IDPSSODescriptor protocolSupportEnumeration=\"urn:oasis:names:tc:SAML:2.0:protocol\">",
+        "        <KeyDescriptor use=\"signing\">",
+        "            <ds:KeyInfo>",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIDXzCCAkegAwIBAgIEXw0sqjANBgkqhkiG9w0BAQsFADBgMQswCQYDVQQGEwJVSzEQMA4GA1UE",
+        "CBMHQnJpc3RvbDEQMA4GA1UEBxMHQnJpc3RvbDESMBAGA1UEChMJRm9yZ2VSb2NrMRkwFwYDVQQD",
+        "ExByc2Fqd3RzaWduaW5na2V5MB4XDTIxMDMwNjAyMTgzNVoXDTMxMDMwNDAyMTgzNVowYDELMAkG",
+        "A1UEBhMCVUsxEDAOBgNVBAgTB0JyaXN0b2wxEDAOBgNVBAcTB0JyaXN0b2wxEjAQBgNVBAoTCUZv",
+        "cmdlUm9jazEZMBcGA1UEAxMQcnNhand0c2lnbmluZ2tleTCCASIwDQYJKoZIhvcNAQEBBQADggEP",
+        "ADCCAQoCggEBAI7DfQgOfXacEXp9EUBbH4PosMK36VIeZDO/gllKmJYnOsa+7FPHMJi7OETsF7sF",
+        "FkiL63+3KiqBIk1b9cIp6SWnp7Z2Hvz+WwgF6o0ZhRWbpF1FyLHZWKB2H30BdY6I3keE2xnvOsmq",
+        "X9pyTdap52WatS06GMAzpisMEZsremV49vc5zuVS//QWSmv6r0S9UNfgW1iICKfqxeYibAND2kgc",
+        "2+0I9QTabH59601aGm2bgTr+EOVtbQUEvblz7/l6b4Q4y8o+BmwXk+olPKgBruPa0XOXBpCa7b/d",
+        "SfLI7z2XHyMzqNG9IGg0LWMtlj7WC0V2gJIrvoxBkSApDUWxyOkCAwEAAaMhMB8wHQYDVR0OBBYE",
+        "FMfL4Owt4dhAwUApAiUclxOHGeUcMA0GCSqGSIb3DQEBCwUAA4IBAQA3xUrvKeQcTMaywcrv8KPP",
+        "WWz5ybb5TxW/5T/W7BtOwFqgEIPQcnauBQ6Pv2tEGWW83lPTan6+boDTTtzASKn9oO0P+dqIH6iw",
+        "ARGw/beScRk3xYpnhUsuMb/RDU5IhQYksD/95Ep9Kx3bDMFjFw7ShE0teHq/GAbymUj5vJQfEKZl",
+        "9G+UByYkvoSoFFjQKK+T2JUVpmernGqVkDZ35oRSktgz0xesZkiKkc0iczAmgBY2w95bxrK4rfA5",
+        "S6PFTRF06pZG55r+bcQAhZXEMzbchHh7WaxqEev97s7JlqyLl3VoIC7UBJcCasJLNeGE551r0R0/",
+        "noRTsMSbQ3Eex5Kt",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "        </KeyDescriptor>",
+        "        <KeyDescriptor use=\"encryption\">",
+        "            <ds:KeyInfo>",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIDRzCCAi+gAwIBAgIEHYaG7jANBgkqhkiG9w0BAQsFADBUMQswCQYDVQQGEwJVSzEQMA4GA1UE",
+        "CBMHQnJpc3RvbDEQMA4GA1UEBxMHQnJpc3RvbDESMBAGA1UEChMJRm9yZ2VSb2NrMQ0wCwYDVQQD",
+        "EwR0ZXN0MB4XDTIxMDMwNjAyMTgzNloXDTMxMDMwNDAyMTgzNlowVDELMAkGA1UEBhMCVUsxEDAO",
+        "BgNVBAgTB0JyaXN0b2wxEDAOBgNVBAcTB0JyaXN0b2wxEjAQBgNVBAoTCUZvcmdlUm9jazENMAsG",
+        "A1UEAxMEdGVzdDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJXDj9VJdnw0X/g2NS8A",
+        "4AEJp5OmaspGrrFkDyZll+niAPNHfE74v9UB1fvH5SJTRiq81HS3sVSwMjjThstkZ81AeMFQeGaB",
+        "Y16Dilkvi2vhIqoxSTjTs11lo5hSfMPOSPmRbH3jJ3Ta1FyywLKWsfM8lmhw+H17/jrViZxghPVt",
+        "KqIaTz+VainC45bgxnZZ/eJSfyPoYTHf+AQRMKEeAxolvOOhwk6xoo3eRMLPhJm1LnwsfYJxJTbE",
+        "aPwlYHkzmG3VF/X3dCRuXvgjA+whD/e0qSfjrUe1r5X/x0NSygE716IKip3iBuNxZR4s8NrF+N6V",
+        "H44aZEE6nxdqh5BOPU0CAwEAAaMhMB8wHQYDVR0OBBYEFPY8mXz+eNBNDNOfShi1X3RNHXqUMA0G",
+        "CSqGSIb3DQEBCwUAA4IBAQBK9OIz9XW+PX8A29PKSUgRJbDPqIWyCilnKyV00Rpxe40KhQqUV8ur",
+        "PioiVxz+YIgf+6VtNhF6ClUX4pDOT48QxnSqX5Qy3Xm/+Sfsm6Sa4EPkLaZYspqoySAHv9FcdLWJ",
+        "u7VvWbDw9oDWG2fZCatNXFzhLWC2EI+vF5tmKDatJLbRHGqQ1jQQpVlYsHcCvaJUThO+jA8X8Yq6",
+        "UqYxD2Z+RV/WboIBbx21sS1HQTeR3tUhz4y4+FYr2c4o2VPrrzQ2NmUN/I5iMxWIGOgHm5/2ZAhl",
+        "J/Ap7YiDLr8eMtidvAdXmN9Sg7iTNVi6ylhqanZh56MKWXDKD2BxLXiQgJge",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "            <EncryptionMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p\">",
+        "                <ds:DigestMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#sha256\"/>",
+        "            </EncryptionMethod>",
+        "            <EncryptionMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#aes128-cbc\">",
+        "                <xenc:KeySize>128</xenc:KeySize>",
+        "            </EncryptionMethod>",
+        "        </KeyDescriptor>",
+        "        <ArtifactResolutionService index=\"0\" Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/ArtifactResolver/metaAlias/alpha/IDPBroadcom\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://idc.scheuber.io/am/IDPSloRedirect/metaAlias/alpha/IDPBroadcom\" ResponseLocation=\"https://idc.scheuber.io/am/IDPSloRedirect/metaAlias/alpha/IDPBroadcom\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://idc.scheuber.io/am/IDPSloPOST/metaAlias/alpha/IDPBroadcom\" ResponseLocation=\"https://idc.scheuber.io/am/IDPSloPOST/metaAlias/alpha/IDPBroadcom\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/IDPSloSoap/metaAlias/alpha/IDPBroadcom\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://idc.scheuber.io/am/IDPMniRedirect/metaAlias/alpha/IDPBroadcom\" ResponseLocation=\"https://idc.scheuber.io/am/IDPMniRedirect/metaAlias/alpha/IDPBroadcom\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://idc.scheuber.io/am/IDPMniPOST/metaAlias/alpha/IDPBroadcom\" ResponseLocation=\"https://idc.scheuber.io/am/IDPMniPOST/metaAlias/alpha/IDPBroadcom\"/>",
+        "        <ManageNameIDService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/IDPMniSoap/metaAlias/alpha/IDPBroadcom\"/>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:WindowsDomainQualifiedName</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:kerberos</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName</NameIDFormat>",
+        "        <SingleSignOnService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://idc.scheuber.io/am/SSORedirect/metaAlias/alpha/IDPBroadcom\"/>",
+        "        <SingleSignOnService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://idc.scheuber.io/am/SSOPOST/metaAlias/alpha/IDPBroadcom\"/>",
+        "        <SingleSignOnService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/SSOSoap/metaAlias/alpha/IDPBroadcom\"/>",
+        "        <NameIDMappingService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/NIMSoap/metaAlias/alpha/IDPBroadcom\"/>",
+        "        <AssertionIDRequestService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://idc.scheuber.io/am/AIDReqSoap/IDPRole/metaAlias/alpha/IDPBroadcom\"/>",
+        "        <AssertionIDRequestService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:URI\" Location=\"https://idc.scheuber.io/am/AIDReqUri/IDPRole/metaAlias/alpha/IDPBroadcom\"/>",
+        "    </IDPSSODescriptor>",
+        "</EntityDescriptor>",
+        "",
+        ""
+      ],
+      "dXJuOmZlZGVyYXRpb246TWljcm9zb2Z0T25saW5l": [
+        "<?xml version=\"1.0\" encoding=\"UTF-8\" standalone=\"yes\"?>",
+        "<EntityDescriptor entityID=\"urn:federation:MicrosoftOnline\" ID=\"_e46a1193-e8a7-48ed-804f-1516729ecb5f\" xmlns=\"urn:oasis:names:tc:SAML:2.0:metadata\" xmlns:query=\"urn:oasis:names:tc:SAML:metadata:ext:query\" xmlns:mdattr=\"urn:oasis:names:tc:SAML:metadata:attribute\" xmlns:saml=\"urn:oasis:names:tc:SAML:2.0:assertion\" xmlns:xenc=\"http://www.w3.org/2001/04/xmlenc#\" xmlns:xenc11=\"http://www.w3.org/2009/xmlenc11#\" xmlns:alg=\"urn:oasis:names:tc:SAML:metadata:algsupport\" xmlns:x509qry=\"urn:oasis:names:tc:SAML:metadata:X509:query\" xmlns:ds=\"http://www.w3.org/2000/09/xmldsig#\">",
+        "    <Extensions>",
+        "        <alg:DigestMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#sha1\"/>",
+        "        <alg:SigningMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#rsa-sha1\"/>",
+        "    </Extensions>",
+        "    <SPSSODescriptor WantAssertionsSigned=\"true\" protocolSupportEnumeration=\"urn:oasis:names:tc:SAML:2.0:protocol\">",
+        "        <KeyDescriptor use=\"signing\">",
+        "            <ds:KeyInfo>",
+        "                ",
+        "                ",
+        "                ",
+        "                ",
+        "                ",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIC/TCCAeWgAwIBAgIQbgDHfi3t1JNGVqwD5/7lmjANBgkqhkiG9w0BAQsFADApMScwJQYDVQQD",
+        "Ex5MaXZlIElEIFNUUyBTaWduaW5nIFB1YmxpYyBLZXkwHhcNMjAxMjIxMDAwMDAwWhcNMjUxMjIx",
+        "MDAwMDAwWjApMScwJQYDVQQDEx5MaXZlIElEIFNUUyBTaWduaW5nIFB1YmxpYyBLZXkwggEiMA0G",
+        "CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFT0/0/2qQurnYa0LbJHF9YYozhEH6r9mCxVDBYbew",
+        "SG4tGgrWpsewQ/96pcczGMQctMvU+h2eX38Hx/f9JAIDbuRQzQlsPhQS7DDZ6WlTXU+t8d/g2C7f",
+        "pSoLs4KVdJih4xyjLUWj+BK/ijsRjBt4Riw9VbJH/DdWKyoSMbECEiE+s1RtLP/eYoMmNfxyQGqW",
+        "irCNqVNBTlqzYQp4dgF0foYy4ktoxwmQOVoTcIMFYp1I4pFPI7CxuMLkfK0X7aTbM7YGphvMfJxJ",
+        "kjrQdyI7G5d1t4DNi3zkEbBT7FGAr6qPt3Kn9ralpqJKHdpEBA9N0vNwQo5XTYIhUbPQ16IRAgMB",
+        "AAGjITAfMB0GA1UdDgQWBBRs7tPmfkksSr67KtElHjYZbeaCTjANBgkqhkiG9w0BAQsFAAOCAQEA",
+        "JqwMZSjQJ36x+1sty6EeLKQLQewQwPaEC47Zut+8bXed6Q8jMZ0bfa/MM7XquEcabaMZLQuKLft4",
+        "4YXwXXQOfQrI2qjQr3eToJFlDT9hR0rfp9wQqttDxd6Aa6RWwDTgo5oKUQCTKLHhEy8uWzScK0eG",
+        "t2d7TWTaDXjRSwNq6tM7fRhZs07tKBV3xfi9EQy/mlavAMFRBVm86NSo7AsOG1IOMq03U3ooCWAX",
+        "h9PdvvHNfHhH19futAnC/HeOjwRF1Qc527aBMphYFQLdiThfmfmiE/AhQqCwZ2oE7uCJhBtR+Kb1",
+        "ZGhjI35pHfsSqGiFa7Kr+5ave822PDcke89Mvg==",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "        </KeyDescriptor>",
+        "        <KeyDescriptor use=\"signing\">",
+        "            <ds:KeyInfo>",
+        "                ",
+        "                ",
+        "                ",
+        "                ",
+        "                ",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIC/TCCAeWgAwIBAgIQN/GPegnT8blP2EcSdMMbBzANBgkqhkiG9w0BAQsFADApMScwJQYDVQQD",
+        "Ex5MaXZlIElEIFNUUyBTaWduaW5nIFB1YmxpYyBLZXkwHhcNMjEwMjE4MDAwMDAwWhcNMjYwMjE4",
+        "MDAwMDAwWjApMScwJQYDVQQDEx5MaXZlIElEIFNUUyBTaWduaW5nIFB1YmxpYyBLZXkwggEiMA0G",
+        "CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXdLGU2Ll5RPdDUnKQ+f/HS5qiTay2cCh9U2AS6oDM",
+        "6SOxVhYGtoeJ1VPebcLnpgLfhPxzrwWoVzXSEF+VRQbnYID2Jb4khjgyEeoThk3VqrThwhahpSbB",
+        "g2vo06vIOp1TS2R1BiwHKTLoB1i1IJnaIFSC3BN6pY4flXWyLQt/5ABXElv2XZLqXM9Eefj6Ji40",
+        "nLIsiW4dWw3BDa/ywWW0MsiW5ojGq4vovcAgENe/4NUbju70gHP/WS5D9bW5p+OIQi7/unrlWe/h",
+        "3A6jtBbbRlXYXlN+Z22uTTyyCD/W8zeXaACLvHagwEMrQePDXBZqc/iX2kI+ooZr1sC/H39RAgMB",
+        "AAGjITAfMB0GA1UdDgQWBBSrX2dm3LwT9jb/p+bAAdYQpE+/NjANBgkqhkiG9w0BAQsFAAOCAQEA",
+        "eqJfYHnsA9qhGttXFfFpPW4DQLh5w6JCce7vGvWINr5fr1DnQdcOr+wwjQ/tqbckAL2v6z1AqjhS",
+        "78kbfegnAQDwioJZ1olYYvLOxKoa6HF+b1/p0Mlub8Zukk2n1b2lKPBBOibOasSY7gQDwlIZi7tl",
+        "9nMTxUfdYK+E5Axv7DVnmUCwcnnpV5/1SFdNyW2kWO4C68rrjMOvECfwrKkbfVJM8f9krEUBuoBF",
+        "8dTDv7D2ZM4Q2buC70NbfaNWUX0yFvKI0IuTqk8RBfGTRQ4fZAbhMPaykEpBu6dNjTi5YOa0lNqF",
+        "GS7Ax7leCh5x9lV8elcLkXs8ySo8AOQJk0hgIw==",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "        </KeyDescriptor>",
+        "        <KeyDescriptor use=\"signing\">",
+        "            <ds:KeyInfo>",
+        "                ",
+        "                ",
+        "                ",
+        "                ",
+        "                ",
+        "                <ds:X509Data>",
+        "                    <ds:X509Certificate>",
+        "MIIC/TCCAeWgAwIBAgIQN/GPegnT8blP2EcSdMMbBzANBgkqhkiG9w0BAQsFADApMScwJQYDVQQD",
+        "Ex5MaXZlIElEIFNUUyBTaWduaW5nIFB1YmxpYyBLZXkwHhcNMjEwMjE4MDAwMDAwWhcNMjYwMjE4",
+        "MDAwMDAwWjApMScwJQYDVQQDEx5MaXZlIElEIFNUUyBTaWduaW5nIFB1YmxpYyBLZXkwggEiMA0G",
+        "CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXdLGU2Ll5RPdDUnKQ+f/HS5qiTay2cCh9U2AS6oDM",
+        "6SOxVhYGtoeJ1VPebcLnpgLfhPxzrwWoVzXSEF+VRQbnYID2Jb4khjgyEeoThk3VqrThwhahpSbB",
+        "g2vo06vIOp1TS2R1BiwHKTLoB1i1IJnaIFSC3BN6pY4flXWyLQt/5ABXElv2XZLqXM9Eefj6Ji40",
+        "nLIsiW4dWw3BDa/ywWW0MsiW5ojGq4vovcAgENe/4NUbju70gHP/WS5D9bW5p+OIQi7/unrlWe/h",
+        "3A6jtBbbRlXYXlN+Z22uTTyyCD/W8zeXaACLvHagwEMrQePDXBZqc/iX2kI+ooZr1sC/H39RAgMB",
+        "AAGjITAfMB0GA1UdDgQWBBSrX2dm3LwT9jb/p+bAAdYQpE+/NjANBgkqhkiG9w0BAQsFAAOCAQEA",
+        "eqJfYHnsA9qhGttXFfFpPW4DQLh5w6JCce7vGvWINr5fr1DnQdcOr+wwjQ/tqbckAL2v6z1AqjhS",
+        "78kbfegnAQDwioJZ1olYYvLOxKoa6HF+b1/p0Mlub8Zukk2n1b2lKPBBOibOasSY7gQDwlIZi7tl",
+        "9nMTxUfdYK+E5Axv7DVnmUCwcnnpV5/1SFdNyW2kWO4C68rrjMOvECfwrKkbfVJM8f9krEUBuoBF",
+        "8dTDv7D2ZM4Q2buC70NbfaNWUX0yFvKI0IuTqk8RBfGTRQ4fZAbhMPaykEpBu6dNjTi5YOa0lNqF",
+        "GS7Ax7leCh5x9lV8elcLkXs8ySo8AOQJk0hgIw==",
+        "                    </ds:X509Certificate>",
+        "                </ds:X509Data>",
+        "            </ds:KeyInfo>",
+        "        </KeyDescriptor>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://login.microsoftonline.com/login.srf\"/>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</NameIDFormat>",
+        "        <NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</NameIDFormat>",
+        "        <AssertionConsumerService index=\"0\" isDefault=\"true\" Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://login.microsoftonline.com/login.srf\"/>",
+        "        <AssertionConsumerService index=\"1\" isDefault=\"false\" Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign\" Location=\"https://login.microsoftonline.com/login.srf\"/>",
+        "        <AssertionConsumerService index=\"2\" isDefault=\"false\" Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:PAOS\" Location=\"https://login.microsoftonline.com/login.srf\"/>",
+        "    </SPSSODescriptor>",
+        "</EntityDescriptor>",
+        "",
+        ""
+      ],
+      "aHR0cHM6Ly9zYW1sLm15dGVzdHJ1bi5jb20vc3A": [
+        "<?xml version=\"1.0\" encoding=\"UTF-8\" standalone=\"yes\"?>",
+        "<EntityDescriptor entityID=\"https://saml.mytestrun.com/sp\" xmlns=\"urn:oasis:names:tc:SAML:2.0:metadata\" xmlns:query=\"urn:oasis:names:tc:SAML:metadata:ext:query\" xmlns:mdattr=\"urn:oasis:names:tc:SAML:metadata:attribute\" xmlns:saml=\"urn:oasis:names:tc:SAML:2.0:assertion\" xmlns:xenc=\"http://www.w3.org/2001/04/xmlenc#\" xmlns:xenc11=\"http://www.w3.org/2009/xmlenc11#\" xmlns:alg=\"urn:oasis:names:tc:SAML:metadata:algsupport\" xmlns:x509qry=\"urn:oasis:names:tc:SAML:metadata:X509:query\" xmlns:ds=\"http://www.w3.org/2000/09/xmldsig#\">",
+        "    <SPSSODescriptor AuthnRequestsSigned=\"false\" WantAssertionsSigned=\"false\" protocolSupportEnumeration=\"urn:oasis:names:tc:SAML:2.0:protocol\">",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect\" Location=\"https://saml.mytestrun.com:443/sp/fedletSloRedirect\" ResponseLocation=\"https://saml.mytestrun.com:443/sp/fedletSloRedirect\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://saml.mytestrun.com:443/sp/fedletSloPOST\" ResponseLocation=\"https://saml.mytestrun.com:443/sp/fedletSloPOST\"/>",
+        "        <SingleLogoutService Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:SOAP\" Location=\"https://saml.mytestrun.com:443/sp/fedletSloSoap\"/>",
+        "        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>",
+        "        <AssertionConsumerService index=\"0\" isDefault=\"true\" Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" Location=\"https://saml.mytestrun.com:443/sp/fedletapplication\"/>",
+        "        <AssertionConsumerService index=\"1\" isDefault=\"false\" Binding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact\" Location=\"https://saml.mytestrun.com:443/sp/fedletapplication\"/>",
+        "    </SPSSODescriptor>",
+        "    <RoleDescriptor xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"query:AttributeQueryDescriptorType\" protocolSupportEnumeration=\"urn:oasis:names:tc:SAML:2.0:protocol\"/>",
+        "    <XACMLAuthzDecisionQueryDescriptor WantAssertionsSigned=\"false\" protocolSupportEnumeration=\"urn:oasis:names:tc:SAML:2.0:protocol\"/>",
+        "</EntityDescriptor>",
+        "",
+        ""
+      ]
+    }
+  }
+}